This question is in regard to the connection between and end user and cloudflare as they are proxied to my site, NOT in regard to the connection between the origin server and cloudflare.
I have found where I can limit the minimum TLS versions, but I haven’t found if I can restrict which algorithms or ciphers are being used. Looking at the available ciphers seem to LOOK FIPS 140-2 compliant, but there are 2 problems with that:
- I’m a human, and it’s possible for me to miss something.
- If those ciphers change, I’d like to know that none will be added that aren’t FIPS compliant.
Am I missing this documentation anywhere? I see a similar question was asked in 12/2019, but it never got a response.