haloant

Yep, i cannot recommend using this service based on what i’ve experienced. Going through all that, opening port 4430, changing the SSL cyphers, and the problem still persists and their support don’t know what to do about it

As mentioned previously the Direct option only works with the SSL cyphers above, however, all of these cyphers are WEAK thus leaving you more vulnerable to attacks – not something you want when you’re running an e-commerce website.

So i contacted the support team regarding this issue after opening Port 4430 did nothing and, apparently, the Direct option will only work with the following SSL cyphers enabled

LS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028) ECDH secp256r1
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027) ECDH secp256r1
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014) ECDH secp256r1
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013) ECDH secp256r1
TLS_RSA_WITH_AES_256_GCM_SHA384 (0x9d)
TLS_RSA_WITH_AES_128_GCM_SHA256 (0x9c)
TLS_RSA_WITH_AES_256_CBC_SHA256 (0x3d)
TLS_RSA_WITH_AES_256_CBC_SHA (0x35)
TLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c)
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f)

which should surely be documented somewhere; the plugin states about the direct option “This has a higher level of PCI compliance and also requires an active SSL certificate.” but doesn’t specify any of the details. Our hosting has lots of other cyphers enabled, the alternative they say is to use the hosted option.

I’m getting the same problem, spinning wheel on checkout for some of our customers (not all) but enough that customers are complaining that they can’t complete purchases. Opening Port 4430 didn’t seem to do anything for us. It’s useful having solutions here in the forum so that others can see what works (and what didn’t)