Connect with us

Hi, what are you looking for?

Linux

How to Enable TLS 1.3 on Nginx Web Server

How to Enable TLS 1.3 on Nginx Web Server. Nginx is a ultra fast web server optimized for modern web applications and servers. TLS 1.3 is a latest addition to TLS protocol for Nginx web server but unfortunately it is at beta state. In this tutorial describes you how to implement TLS 1.3 on Nginx web server so that your server are future ready when TLS 1.3 in production state. By implementing TLS 1.3 your site is loaded faster than ever and eventually added those latest security practices must be implemented to your web server. In this tutorial we will enable TLS 1.3 to Nginx web server so easily.

Prerequest steps
  1. Nginx must be installed on CentOS 7 and Ubuntu 18.04
  2. Let’s Encrypt SSL certificates must be installed on CentOS 7 and Ubuntu 18.04

Note: Adding TLS 1.3 requires Nginx 1.13 or higher version and now currently TLS 1.3 is in beta state that’s why it won’t works with web browser unless and until it is in production state.

Step-1 : Edit Nginx configuration file
$ sudo vi /etc/nginx/nginx.conf

Find the given line

ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

Add the TLS 1.3 to given line

ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
Step-2 : Add TLS 1.3 to server blocks
$ sudo vi /etc/nginx/sites-available/example.com

Find the given line inside 443 server blocks

ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

Add the TLS 1.3 to given line

Advertisement. Scroll to continue reading.
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
Step-3 : Create symbolic link between sites-available and sites-enabled
$ sudo ln -ls /etc/nginx/sites-available/* /etc/nginx/sites-enabled/
Step-4 : Check whether it is working or not
$ sudo nginx -t

If it don’t show error then you are good to go to next step

Step-5 : Restart Nginx to make changes in effect
$ sudo systemctl restart nginx

Congratulations now you have enabled TLS 1.3 to your Nginx web servers. It will assign Nginx server future ready when TLS 1.3 in production state. TLS 1.3 is the fastest TLS protocol recommended in near future for web servers. If you have any comments regarding this tutorial then use the comment section below.

Comments
Advertisement
Advertisement

Linux

In this tutorial we will configure ISCSI Target Server on CentOS 8 / RHEL 8. ISCSI stands for Internet Small Computer Systems Interface.  This...

Linux

In this tutorial we will configure SELinux Modes on CentOS 8 / RHEL 8. SELinux stands for Security-Enhanced Linux and it is developed by...

Linux

DNF stands Dandified YUM and this is the default package manager for RHEL 8 / CentOS 8.  This tutorial explains you how to create...

Linux

If you forget a root password of your RHEL 8 and CentOS 8 and want to reset the password so that the RHEL 8...

Windows

How to auto upgrade JioFi firmware for JioFi 2 / JioFi 3 / JioFi 4 / JioFi 5 / JioFi 6 and other JioFi...

Advertisement

You May Also Like

Windows

How to auto upgrade JioFi firmware for JioFi 2 / JioFi 3 / JioFi 4 / JioFi 5 / JioFi 6 and other JioFi...

Windows

Internet is the most important public network for connecting to the WEB. For internet connection requirement the ISP is required as well as it...

Windows

How to download and install the Mobile Intel 4 Series Express Chipset Graphics Drivers for Windows 10.  Windows 10 is the one of the...

Windows

How to Install and Configure PCSX2 on Windows 10. The Windows 10 is the most recommended operating system for the Games. In stream platform...