NGINX 1.17.7 mainline built against OpenSSL 1.1.1d with TLS 1.3 Final (RFC 8446) and brotli for Red Hat Enterprise Linux and CentOS

NGINX 1.17.7 mainline-version, built statically against OpenSSL 1.1.1d with ngx cache purge, brotli (v1.0.7),  TLS 1.3 final and ngx http geoip2 module support added to repository. TLS 1.3 works with Google Chrome versions 70. To enable TLS 1.3, you must specify: ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; Links:

Alternatively, feel free to use our CentOS/RHEL repository.

5 thoughts on “NGINX 1.17.7 mainline built against OpenSSL 1.1.1d with TLS 1.3 Final (RFC 8446) and brotli for Red Hat Enterprise Linux and CentOS”

  1. brotli compression is not working …. (content-encoding: gzip)
    TLS 1.3 work fine …

    Install on:
    Linux l 3.10.0-1062.12.1.el7.x86_64
    brotli-1.0.7-5.el7.x86_64 (from epel)
    nginx.conf:
    brotli_static on;
    brotli_comp_level 6;
    brotli_types *;

    please help …

    1. Hello Romanitch,

      Are you sure you have static files *.css.br for your *.css files? This is actually how brotli_static works.

      If you want dynamic compression, please try to use “brotli on”.

  2. NGINX 1.17.7 mainline built against OpenSSL 1.1.1d with TLS 1.3 Final (RFC 8446) and brotli for Red Hat Enterprise Linux and CentOS

    brotli compression is not working …. (content-encoding: gzip)
    TLS 1.3 work fine …

    Install on:
    Linux l 3.10.0-1062.12.1.el7.x86_64
    brotli-1.0.7-5.el7.x86_64 (from epel)
    nginx.conf:
    brotli_static on;
    brotli_comp_level 6;
    brotli_types *;

    please help …

  3. Hi,

    I saw that you guys just released nginx 1.17.10 to repo. It doesn’t have openSSL bundled and is therefore throwing an error in yum since 1.1.1 is required. Was this intentional?

    thanks

Leave a Reply

Your email address will not be published. Required fields are marked *