Hi,
is there a way to configure TLS versions and ciphers
for server and client role of DNS-over-TLS?
thanks,
nusenu
not by configuration (as far as I know).
If you compile unbound you may adjust
https://github.com/NLnetLabs/unbound/blob/master/util/net_help.c#L706
to disable some ciphers
or even repeat https://github.com/NLnetLabs/unbound/blob/master/util/net_help.c#L696
to envorce TLS1.3 only if available at compile time.
depend on your goals
Andeas
is there a way to configure TLS versions and ciphers
for server and client role of DNS-over-TLS?not by configuration (as far as I know).
Thanks for your reply.
I filed a feature request for this now:
https://nlnetlabs.nl/bugs-script/show_bug.cgi?id=4207