Some strong ciphers are not available in the current gateway version 10.1.CR2, for example,

TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
TLS_ECDHE_PSK_WITH_CHACHA20_POLY1305_SHA256
TLS_CHACHA20_POLY1305_SHA256
TLS_ECCPWD_WITH_AES_128_GCM_SHA256
TLS_ECCPWD_WITH_AES_256_GCM_SHA384
TLS_ECDHE_ECDSA_WITH_ARIA_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_ARIA_256_GCM_SHA384
TLS_ECDHE_PSK_WITH_AES_128_GCM_SHA256
TLS_ECDHE_PSK_WITH_AES_256_GCM_SHA384

Layer7 API Gateway 10.1

The gateway only supports white listed cipher suites.

Supporting extra cipher suites is enhancement request, please open an idea ticket on our community,

https://community.broadcom.com/enterprisesoftware/ideation/allideas?Page=1&CategoryKeys=09f1ac90-f043-4b70-8b2d-412d2f9afe4c&StatusKeys=&Sort=MostRecent

And describe the reason to support the extra cipher; is it for inbound connection or outbound connection; which assertion needs the cipher, etc.