Oracle Cloud Infrastructure Documentation

Creating a Load Balancer SSL Cipher Suite

On Compute Cloud@Customer, a lload balancer (LB) uses a cipher suite to secure Transport Layer Security (TLS) or Secure Socket Layer (SSL) network connections. The cipher suite defines a list of security algorithms that the LB uses to negotiate with peers exchanging information with the LB. The cipher suites used affect the security level, performance, and compatibility of data traffic.

A series of predefined cipher suites exist that you can use when you create an SSL configuration. If the predefined cipher suites don't meet requirements, you can create custom cipher suites.

    1. In the Compute Cloud@Customer Console navigation menu, select Networking, then select Load Balancers.

    2. At the top of the page, select the compartment that contains the load balancer.

    3. Select the name of the Load Balancer for which you want to create the load balancer SSL cipher suite.

    4. Under Resources, select Cipher Suites.

      The list of available cipher suites appears. If none are listed, you must create one.

    5. To create a load balancer cipher suite, select Create Cipher Suite.
    6. In the Load Balancer SSL Cipher Suite dialog box, give the LB SSL cipher suite a name.
      Note

      The name of a user-defined cipher suite can't be the same as any of Oracle’s predefined or reserved SSL cipher suite names.

    7. Select the cipher suite components to be part of the SSL cipher suite.

    8. Select Create Cipher Suite.

      To check the result, select the cipher suite name in the Cipher Suites list in the Resources section of the LB details page.

  • Use the oci lb ssl-cipher-suite create command and required parameters to create a load balancer SSL cipher suite.

    oci lb ssl-cipher-suite create --ciphers <ssl_ciphers_complex_type> --load-balancer-id <load-balancer_OCID> --name <ssl_cipher_suite_name>

    For a complete list of CLI commands, flags, and options, see the Command Line Reference.

  • Use the CreateSSLCipherSuite operation to create a load balancer SSL cipher suite.

    For information about using the API and signing requests, see REST APIs and Security Credentials. For information about SDKs, see Software Development Kits and Command Line Interface.