Quantcast
Viewing all articles
Browse latest Browse all 4759

Any way of configuring Max Fragment Length Negotiation

Hi there. I'm working on some IoT projects and in connection to that I'm proxying some services behind nginx for TLS. The devices that connect however have quite limited RAM, and a default TLS connection requires 16KB buffers per connection (making out the majority of the 22KB buffer the library I'm using needs). It works, but I would like to support MFLN as described in RFC6066 https://tools.ietf.org/html/rfc6066#page-8

As far as I understand, support should be in OpenSSL 1.1.1, is there any way to configure it in nginx?

Thanks :)

Viewing all articles
Browse latest Browse all 4759

Trending Articles