Facebook Twitter Instagram
    TecAdmin
    • Home
    • FeedBack
    • Submit Article
    • About Us
    Facebook Twitter Instagram
    TecAdmin
    You are at:Home»Web Servers»Nginx»How To Enable TLS 1.2 Only In Nginx Web Server

    How To Enable TLS 1.2 Only In Nginx Web Server

    By RahulApril 29, 20181 Min Read

    SSL 2.0 and SSL 3.0 having lots of known vulnerabilities like POODLE (CVE-2014-3566), That’s why latest browsers have removed support for these vulnerable protocols. We also recommend moving your server to use TLS versions and specifically to TLS 1.2. This tutorial will help you to enable TLS 1.2 with Nginx web server.

    Advertisement
    • Install and Use Let’s Encrypt SSL in Nginx

    Enable TLS 1.2 Only in Nginx

    Edit your Nginx server block section for your domain in configuration file on your server and add set the ssl_protocols as followings. This enables TLSv1.2 only protocol in your Nginx server block.

     ssl_protocols TLSv1.2;
    

    The simplest Nginx server block with SSL looks like below

    server {
        listen 443 ssl;
        server_name example.com;
    
        ssl_protocols TLSv1.2;
        ssl_certificate /etc/pki/tls/cert.pem;
        ssl_certificate_key /etc/pki/tls/private/privkey.pem;
    
    

    Enable TLS 1.1 and 1.2 Both

    As per article written here POODLE vulnerability expands beyond SSLv3 to TLS 1.0 and 1.1. So we don’t recommend to use this for production server but if you want to enable this for your development. You can do following configuration.

     ssl_protocols TLSv1.2 TLSv1.1;
    

    After making changes in your configuration file, restart Nginx service to apply new settings.

    nginx SSL TLS TLS 1.2
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email WhatsApp

    Related Posts

    Configuring Nginx for Laravel on Ubuntu & Debian

    Configuring Nginx to Handle 100 Thousands Request Per Minute

    Configuring Nginx to Handle 100 Thousands Request Per Minute

    How To Set Up Nginx Reverse Proxy: A Step-By-Step Tutorial

    View 1 Comment

    1 Comment

    1. Detea on April 30, 2018 11:44 pm

      Rahul K., thank you for your blog post.Really thank you! Awesome.

      Reply

    Leave A Reply Cancel Reply

    Advertisement
    Recent Posts
    • How to List Manually Installed Packages in Ubuntu & Debian
    • 10 Bash Tricks Every Developer Should Know
    • How to Validate Email Address in JavaScript
    • Firewalld: Common Firewall Rules and Commands
    • 12 Apk Commands in Alpine Linux Package Management
    Facebook Twitter Instagram Pinterest
    © 2023 Tecadmin.net. All Rights Reserved | Terms  | Privacy Policy

    Type above and press Enter to search. Press Esc to cancel.