diff options
author | Roman Arutyunyan <arut@nginx.com> | 2023-04-11 18:29:20 +0400 |
---|---|---|
committer | Roman Arutyunyan <arut@nginx.com> | 2023-04-11 18:29:20 +0400 |
commit | 4746ec2b626dd8dd9550809f125e5887c4c0d445 (patch) | |
tree | 10c45de9cae9083f35bb50b74e3754590e2dd8a8 | |
parent | cc00acfe74237710163eec7aeb89cc7374441af4 (diff) |
README: revised TLSv1.3 requirement for QUIC.
TLSv1.3 is enabled by default since d1cf09451ae8.
-rw-r--r-- | README | 7 |
1 files changed, 2 insertions, 5 deletions
@@ -119,10 +119,6 @@ Experimental QUIC support for nginx ssl_early_data on; - Make sure that TLS 1.3 is configured which is required for QUIC: - - ssl_protocols TLSv1.3; - To enable GSO (Generic Segmentation Offloading): quic_gso on; @@ -135,6 +131,8 @@ Experimental QUIC support for nginx quic_host_key <filename>; + QUIC requires TLSv1.3 protocol, which is enabled by the default + by "ssl_protocols" directive. By default, GSO Linux-specific optimization [10] is disabled. Enable it in case a corresponding network interface is configured to @@ -175,7 +173,6 @@ Example configuration: ssl_certificate certs/example.com.crt; ssl_certificate_key certs/example.com.key; - ssl_protocols TLSv1.3; location / { # required for browsers to direct them into quic port |