9a6da86481
Add field tls_versions to pools for restricing TLS versions used. This is a colon-separated string of versions to be used. Available values (as defined in octavia-lib): SSLv3, TLSv1, TLSv1.1, TLSv1.2, TLSv1.3 Add default_pool_tls_versions in octavia.conf Note: TLSv1.3 connections will use haproxy's default ciphers instead of the listener's tls_ciphers field Change-Id: I480b7fb9756d98ba9dbcdfd1d4b193ce6868e291 Story: 2006733 Task: 37173 Depends-On: Ic33d9b9a256490ae1b048cdfd2475d6340509fdb
18 lines
615 B
JSON
18 lines
615 B
JSON
{
|
|
"pool": {
|
|
"lb_algorithm": "LEAST_CONNECTIONS",
|
|
"session_persistence": {
|
|
"type": "SOURCE_IP"
|
|
},
|
|
"description": "Super Least Connections Pool",
|
|
"name": "super-least-conn-pool",
|
|
"tags": ["updated_tag"],
|
|
"tls_container_ref": "http://198.51.100.10:9311/v1/containers/c1cd501d-3cf9-4873-a11b-a74bebcde929",
|
|
"ca_tls_container_ref": null,
|
|
"crl_container_ref": null,
|
|
"tls_enabled": false,
|
|
"tls_ciphers": "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256",
|
|
"tls_versions": ["TLSv1.2", "TLSv1.3"]
|
|
}
|
|
}
|