diff --git a/tests/test_traefik.py b/tests/test_traefik.py
index 472b3b8..4098586 100644
--- a/tests/test_traefik.py
+++ b/tests/test_traefik.py
@@ -101,7 +101,19 @@ def test_letsencrypt_config(tljh_dir):
     dynamic_config = _read_dynamic_config(state_dir)
 
     assert dynamic_config["tls"] == {
-        "options": {"default": {"minVersion": "VersionTLS12"}},
+        "options": {
+            "default": {
+                "minVersion": "VersionTLS12",
+                "cipherSuites": [
+                    "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384",
+                    "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
+                    "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
+                    "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+                    "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305",
+                    "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305",
+                ],
+            }
+        },
         "stores": {
             "default": {
                 "defaultGeneratedCert": {
@@ -166,7 +178,19 @@ def test_manual_ssl_config(tljh_dir):
     assert "tls" in dynamic_config
 
     assert dynamic_config["tls"] == {
-        "options": {"default": {"minVersion": "VersionTLS12"}},
+        "options": {
+            "default": {
+                "minVersion": "VersionTLS12",
+                "cipherSuites": [
+                    "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384",
+                    "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
+                    "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
+                    "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+                    "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305",
+                    "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305",
+                ],
+            },
+        },
         "stores": {
             "default": {
                 "defaultCertificate": {