Configuring A Service For Ssl Initiation - Cisco 11503 - CSS Content Services Switch Configuration Manual
Content services switch ssl configuration guide
Hide thumbs
Also See for 11503 - CSS Content Services Switch:
- Administration manual (392 pages) ,
- Hardware installation manual (184 pages) ,
- Getting started manual (142 pages)
Table of Contents
Advertisement
Configuring a Service for SSL Initiation
Configuring a Service for SSL Initiation
Note
Note
Cisco Content Services Switch SSL Configuration Guide
6-24
SAn SSL proxy list may belong to multiple SSL services (one SSL proxy list per
service), and an SSL service may belong to multiple content rules. You can apply
the services to content rules, which allow the CSS to direct clear content requests
to the SSL module for encryption.
The requirements for the type of service to be added to the SSL initiation content
rule is as follows:
The service must have a configured IP address.
•
•
The keepalive type for an SSL initiation service can be none, ICMP, TCP, or
SSL. If you configure a TCP or SSL keepalive type, you must configure the
keepalive port correctly for the service to work.
You must configure an SSL proxy list that contains an SSL initiation
•
back-end server configuration for a service of type ssl-init.
The CSS supports multiple active SSL services of type ssl-init for each SSL
module in the CSS.
This section covers:
Creating an SSL Service
•
Configuring the SSL Service Type
•
Configuring an IP Address for an SSL Initiation Service
•
Adding an SSL Proxy List to an SSL Initiation Service
•
Specifying the SSL Module Slot
•
•
Configuring the SSL Initiation Service Keepalive Type
SSL Session ID Cache Size
•
Activating the SSL Service
•
Suspending the SSL Service
•
If you do not configure a service port, the CSS uses the same port number as the
content rule.
Chapter 6
Configuring SSL Initiation
OL-5655-01
Advertisement
Table of Contents
