nginx load balance TLS elasticsearch

borys_85 nginx-forum at
Mon Mar 14 19:55:38 UTC 2022

should I use ssl settings for "listen 9290 ssl" in the proxy part?

    server {
        listen 9290 ssl;

        location /upstream {
            proxy_pass https://elasticsearch_servers;
            proxy_ssl_certificate /etc/ssl/certs/coordination_1.crt;
            proxy_ssl_certificate_key /etc/ssl/certs/coordination_1.key;
            proxy_ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
            proxy_ssl_ciphers HIGH:!aNULL:!MD5;
            proxy_ssl_trusted_certificate /etc/ssl/certs/ca.crt;

            proxy_ssl_verify on;
            proxy_ssl_verify_depth 2;
            proxy_ssl_session_reuse on;

Posted at Nginx Forum:,293831,293837#msg-293837

More information about the nginx mailing list