You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@trafficserver.apache.org by "James Peach (JIRA)" <ji...@apache.org> on 2014/10/24 21:14:33 UTC
[jira] [Commented] (TS-3153) Ability to disable protocols based on
SNI information
[ https://issues.apache.org/jira/browse/TS-3153?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14183321#comment-14183321 ]
James Peach commented on TS-3153:
---------------------------------
I'm a bit concerned about how this would be configured. I'm worried about feature creep in {{ssl_multicert.config}} and how this kind of configuration overlaps the ports configuration. {{ssl_multicert.config}} needs a real overhaul to allow better control over SSL features, and this might fall into that category, but I'd really like to avoid ending up with 3 different ways to configure protocols.
> Ability to disable protocols based on SNI information
> -----------------------------------------------------
>
> Key: TS-3153
> URL: https://issues.apache.org/jira/browse/TS-3153
> Project: Traffic Server
> Issue Type: Improvement
> Components: HTTP/2, SPDY
> Reporter: Bryan Call
>
> We are running into problems where certain origin servers are having issues when SPDY is enabled. It would be great to have more control over when protocols are enabled.
> One way to do this would be to add a protocol options to the entry in the ssl_multicert config. We wound then add additional entries for domains that need to disable the protocols. All protocols should be enabled by default.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)