diff --git a/nested/network.json b/nested/network.json
index 774bec00..011dc7ca 100644
--- a/nested/network.json
+++ b/nested/network.json
@@ -275,7 +275,7 @@
             "apiVersion": "2017-05-10",
             "dependsOn": [
                 "Microsoft.Resources/deployments/subnetTemplate",
-                "[concat('Microsoft.Network/publicIPAddresses/',parameters('moodleCommon').lbPipName)]"
+                "[concat('Microsoft.Network/publicIPAddresses/',parameters('moodleCommon').appGwPipName)]"
             ],
             "name": "appGwTemplate",
             "properties": {
diff --git a/scripts/install_moodle.sh b/scripts/install_moodle.sh
index e249cbe8..8597f802 100644
--- a/scripts/install_moodle.sh
+++ b/scripts/install_moodle.sh
@@ -296,8 +296,12 @@ http {
 
   set_real_ip_from   127.0.0.1;
   real_ip_header      X-Forwarded-For;
-  ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
-  ssl_prefer_server_ciphers on;
+  #upgrading to TLSv1.2 and droping 1 & 1.1
+  ssl_protocols TLSv1.2;
+  #ssl_prefer_server_ciphers on;
+  #adding ssl ciphers
+  ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;
+
 
   gzip on;
   gzip_disable "msie6";
diff --git a/scripts/setup_webserver.sh b/scripts/setup_webserver.sh
index 74bcec32..a57b4be0 100644
--- a/scripts/setup_webserver.sh
+++ b/scripts/setup_webserver.sh
@@ -155,8 +155,11 @@ http {
 
   set_real_ip_from   127.0.0.1;
   real_ip_header      X-Forwarded-For;
-  ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
-  ssl_prefer_server_ciphers on;
+  #upgrading to TLSv1.2 and droping 1 & 1.1
+  ssl_protocols TLSv1.2;
+  #ssl_prefer_server_ciphers on;
+  #adding ssl ciphers
+  ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;
 
   gzip on;
   gzip_disable "msie6";