nginx load balance TLS elasticsearch
borys_85
nginx-forum at forum.nginx.org
Mon Mar 14 19:55:38 UTC 2022
should I use ssl settings for "listen 9290 ssl" in the proxy part?
server {
listen 9290 ssl;
server_name 10.210.12.10;
#...
location /upstream {
proxy_pass https://elasticsearch_servers;
proxy_ssl_certificate /etc/ssl/certs/coordination_1.crt;
proxy_ssl_certificate_key /etc/ssl/certs/coordination_1.key;
proxy_ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
proxy_ssl_ciphers HIGH:!aNULL:!MD5;
proxy_ssl_trusted_certificate /etc/ssl/certs/ca.crt;
proxy_ssl_verify on;
proxy_ssl_verify_depth 2;
proxy_ssl_session_reuse on;
}
}
Posted at Nginx Forum: https://forum.nginx.org/read.php?2,293831,293837#msg-293837
More information about the nginx
mailing list