# When enabled, WebShield will search for the first certificate
# in cache and return it for the requests without SNI.
# When disabled, default self-signed server certficate will be used.
lua_enable_ws_sslcache_search on;

# Default server certificate that will be used for requests without SNI.
# It is self-signed and is generated on installation/upgrade for 365 days
# so please note that it will expire after a year since the installation/upgrade.
ssl_certificate             ssl_certs/dummy.pem;
ssl_certificate_key         ssl_certs/dummy.pem;