Custom TLS Configuration

The CEP allows you to modify the default TLS configuration of the nginx web server. For more information please visit the Nginx documentation

Default custom-ssl.conf

 ssl_protocols TLSv1.3 TLSv1.2;
 ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
 ssl_ecdh_curve secp384r1;
 ssl_prefer_server_ciphers on;
 ssl_session_cache shared:SSL:10m;
 ssl_session_timeout 10m;
 ssl_session_tickets off;

docker-compose.yml

    volumes:
      - ./custom-ssl.conf:/etc/nginx/conf.d/ssl.include