Creating A Back-End Ssl Server In An Ssl Proxy List; Configuring A Back-End Ssl Server Type - Cisco 11503 - CSS Content Services Switch Configuration Manual
Content services switch ssl configuration guide
Hide thumbs
Also See for 11503 - CSS Content Services Switch:
- Administration manual (392 pages) ,
- Hardware installation manual (184 pages) ,
- Getting started manual (142 pages)
Table of Contents
Advertisement
Chapter 5
Configuring Back-End SSL
Creating a Back-End SSL Server in an SSL Proxy List
Configuring a Back-End SSL Server Type
OL-5655-01
You must create a back-end SSL server before you can configure back-end SSL
proxy-list parameters. To create a back-end server in the SSL proxy list, use the
backend-server number command. This command assigns it a number (index
entry) in the SSL proxy list that you use to configure specific SSL parameters
associated with the back-end SSL server (for example, VIP address, certificate
name, and key pair). Enter a value from 1 to 256.
For example, to create back-end server 1 in the proxy list, enter:
(config-ssl-proxy-list[ssl_list3])# backend-server 1
To remove back-end server 1 from the SSL proxy list, enter:
(config-ssl-proxy-list[ssl_list3])# no backend-server 1
By default, a back-end SSL server has a type of backend-ssl that allows a CSS to:
Receive encrypted data from a client
•
Decrypt the data for load balancing
•
Re-encrypt the data and send it to an SSL server over an SSL connection
•
If you configure an SSL initiation server but want to reconfigure it as a back-end
SSL server in the same proxy list, use the backend-server number type
backend-ssl command.
For example, to reconfigure SSL initiation server 1 as a back-end SSL server in
SSL proxy list ssl_list3, enter:
(config-ssl-proxy-list[ssl_list3])# backend-server 1 type backend-ssl
For information about SSL initiation, see
Configuring Back-End SSL Servers in an SSL Proxy List
Chapter 5, Configuring SSL
Cisco Content Services Switch SSL Configuration Guide
Initiation.
5-5
Advertisement
Table of Contents
