TLS Upstream Allow Renegotiation
Summary
TLS Upstream Allow Renegotiation controls whether server-initiated TLS renegotiation is allowed for upstream servers. For more details, see Envoy's documentation on allow_renegotiation.
danger
TLS renegotiation is considered insecure and shouldn’t be used unless absolutely necessary.
How to configure
- Core
- Enterprise
- Kubernetes
| YAML/JSON setting | Type | Default |
|---|---|---|
tls_upstream_allow_renegotiation | boolean | false |
Enable TLS Upstream Allow Renegotiation in the Console:
Kubernetes does not support TLS Upstream Allow Renegotiation
Examples
tls_upstream_allow_renegotiation: true