Imperva Cyber Community

Expand all | Collapse all

mode suppoted cipher

  • 1.  mode suppoted cipher

    Posted 12-09-2020 08:49
    i have a WAF on premise with 13.5 version in bridge mode, but in my portal have DHE-RSA-AES256-GCM-SHA384 cipher.
    I would like to know what mode this cipher supports in specific in version 13.5
    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Bompart
    CDMX
    ------------------------------


  • 2.  RE: mode suppoted cipher

    Imperva Employee
    Posted 12-09-2020 11:41
    Hi Edwin,

    Per https://docs.imperva.com/bundle/v13.6-web-application-firewall-user-guide/page/534.htm, TLS_DH_RSA_WITH_AES_256_GCM_SHA384 is supported for NGRP (Next Generation Reverse Proxy) gateways only.

    Advanced Bridge mode, which is available beginning in v14.3 for WAF, supports advanced cipher sets. The list should be the same as what is currently designated as NGRP only. I am working internally to get our documentation updated.

    For more information on Advanced Bridge mode, please see: https://docs.imperva.com/bundle/v14.3-web-application-firewall-user-guide/page/76416.htm

    ------------------------------
    Jaired Anderson
    Principal Consultant
    Imperva
    Tulsa OK
    ------------------------------



  • 3.  RE: mode suppoted cipher

    Posted 12-09-2020 11:46
    in versión 13.5 is not supported in any mode?


    TLS_DH_RSA_WITH_AES_256_GCM_SHA384 and TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 its the same?

    ------------------------------
    Bompart
    CDMX
    ------------------------------