From 01317bf80a932c474d4793125a695b0872f68820 Mon Sep 17 00:00:00 2001
From: = <abby.crimlis@outlook.com>
Date: Tue, 15 Aug 2023 12:56:09 +1200
Subject: [PATCH] Add example config for TLS protocol version

Co-authored-by: James Blair <mail@jamesblair.net>
Signed-off-by: = <abby.crimlis@outlook.com>
---
 etcd.conf.yml.sample | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/etcd.conf.yml.sample b/etcd.conf.yml.sample
index 9d1648e22d3..a080c5f3d75 100644
--- a/etcd.conf.yml.sample
+++ b/etcd.conf.yml.sample
@@ -145,3 +145,7 @@ cipher-suites: [
   TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
   TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
 ]
+
+# Limit etcd to specific TLS protocol versions 
+tls-min-version: 'TLS1.2'
+tls-max-version: 'TLS1.3'