diff --git a/core/nginx/conf/nginx.conf b/core/nginx/conf/nginx.conf
index f7d9f074..7a212ebe 100644
--- a/core/nginx/conf/nginx.conf
+++ b/core/nginx/conf/nginx.conf
@@ -79,6 +79,8 @@ http {
       listen [::]:443 ssl http2;
 
       include /etc/nginx/tls.conf;
+      ssl_stapling on;
+      ssl_stapling_verify on;
       ssl_session_cache shared:SSLHTTP:50m;
       add_header Strict-Transport-Security 'max-age=31536000';
 
diff --git a/towncrier/newsfragments/1618.feature b/towncrier/newsfragments/1618.feature
new file mode 100644
index 00000000..443f2b5c
--- /dev/null
+++ b/towncrier/newsfragments/1618.feature
@@ -0,0 +1 @@
+Enable OCSP stapling for the http server within nginx.