april
commented
5 years ago Do you happen to have any good configuration examples I could build upon? That would make things a lot easier. Thanks!
Open xstevens opened 5 years ago
april
commented
5 years ago Do you happen to have any good configuration examples I could build upon? That would make things a lot easier. Thanks!
xstevens
commented
5 years ago I don't at the moment, but I'll see if I can put something together in the near future.
xstevens
commented
5 years ago I put together something that should be a descent start based on the front-proxy example in Envoy. I put up the config files and instructions in a gist here:
https://gist.github.com/xstevens/15efbc65d024dfbd29803e12386a32fb
Envoy / BoringSSL doesn't seem to support some of the cipher suites I see in other config generator examples.
It would be nice to have Envoy proxy configuration examples, particularly for configurations prior to TLSv1.3. The default currently will still use TLSv1.0 as the minimum protocol version.