Skip to content

Custom TLS Configuration

The CEP allows you to modify the default TLS configuration of the nginx web server. For more information please visit the Nginx documentation

Default custom-ssl.conf
 ssl_protocols TLSv1.3 TLSv1.2;
 ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
 ssl_ecdh_curve secp384r1;
 ssl_prefer_server_ciphers on;
 ssl_session_cache shared:SSL:10m;
 ssl_session_timeout 10m;
 ssl_session_tickets off;
docker-compose.yml
    volumes:
      - ./custom-ssl.conf:/etc/nginx/conf.d/ssl.include