This commit is contained in:
cpp 2021-08-02 14:23:12 +02:00 committed by Hive
commit aaebd3872f
5 changed files with 19 additions and 17 deletions

11
config/dynamic/tls.yml Normal file
View file

@ -0,0 +1,11 @@
tls:
options:
default:
minVersion: VersionTLS12
cipherSuites:
- TLS_CHACHA20_POLY1305_SHA256
- TLS_AES_128_GCM_SHA256
- TLS_AES_256_GCM_SHA384
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

View file

@ -1,14 +0,0 @@
[tls.options]
[tls.options.default]
minVersion = "VersionTLS12"
cipherSuites = [
"TLS_CHACHA20_POLY1305_SHA256",
"TLS_AES_128_GCM_SHA256",
"TLS_AES_256_GCM_SHA384",
"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384"
]
[tls.options.mintls13]
minVersion = "VersionTLS13"

View file

@ -38,7 +38,8 @@
# we are loading an additional file, as some options can only be defined
# in a 'dynamic' file config, not in this main config file.
[providers.file]
filename = "/etc/traefik/dynamic_conf.toml"
directory = "/etc/traefik/dynamic"
watch = true
[certificatesResolvers.default.acme]
email = "hostmaster@zom.bi"
@ -55,4 +56,3 @@
[[tls.certificates]]
certFile = "cert/grun.host.origin.pem"
keyFile = "cert/grun.host.origin.key"