OpenStack Networking supports SSL for the Networking API
server. By default, SSL is disabled but you can enable it in
the neutron.conf
file.
Set these options to configure SSL:
use_ssl = True
Enables SSL on the networking API server.
ssl_cert_file =
/path/to/certfile
Certificate file that is used when you securely start the Networking API server.
ssl_key_file =
/path/to/keyfile
Private key file that is used when you securely start the Networking API server.
ssl_ca_file =
/path/to/cafile
Optional. CA certificate file that is used when you securely start the Networking API server. This file verifies connecting clients. Set this option when API clients must authenticate to the API server by using SSL certificates that are signed by a trusted CA.
tcp_keepidle = 600
The value of TCP_KEEPIDLE, in seconds, for each server socket when starting the API server. Not supported on OS X.
retry_until_window = 30
Number of seconds to keep retrying to listen.
backlog = 4096
Number of backlog requests with with to configure the socket.