Configure Load Balancer Cipher Suites

Hi, there, wondering if it’s possible to control which ciphers are available on a DO load balancer (provisioned via Kubernetes). A quick scan reveals that my LB supports a weak TLS 1.2 cipher (TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA) that I’d like to disable.

Any guidance or experience with this?

Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Bobby Iliev
Site Moderator
Site Moderator badge
February 10, 2023
Accepted Answer

Hey @raybradley,

I believe that this is not configurable at the time being.

The best thing to do to get your voice heard regarding this would be to head over to our Product Ideas board and post a new idea, including as much information as possible for what you’d like to see implemented.

In the meantime, what you could do is use Cloudflare, that way you could use the free SSL provided by their service and also take advantage of the free DDoS protection and CDN offerings.

Hope that helps!

- Bobby.

Try DigitalOcean for free

Click below to sign up and get $200 of credit to try our products over 60 days!

Sign up