Suspending The Ssl Service; Configuring A Content Rule For Back-End Ssl - Cisco 11503 - CSS Content Services Switch Configuration Manual
Content services switch ssl configuration guide
Hide thumbs
Also See for 11503 - CSS Content Services Switch:
- Administration manual (392 pages) ,
- Hardware installation manual (184 pages) ,
- Getting started manual (142 pages)
Table of Contents
Advertisement
Configuring a Content Rule for Back-End SSL
Suspending the SSL Service
Configuring a Content Rule for Back-End SSL
Cisco Content Services Switch SSL Configuration Guide
5-22
To suspend an SSL service and remove it from the pool for future load-balancing
SSL content requests, use the suspend command. Suspending an SSL service
does not affect existing content flows, but it prevents additional connections from
accessing the service for its content.
You must suspend a service prior to modifying an SSL proxy list.
To suspend service ssl_serv1, enter:
(config-service[ssl_serv1])# suspend
For the CSS to direct SSL requests for content, apply the back-end services to
content rules. No network traffic is sent to an SSL module until you activate an
SSL content rule to define where the content physically resides, where to direct
the request for content (which SSL service), and which load-balancing method to
use.
For an HTTP server or back-end SSL server content rule, ensure that each VIP
address and port configured in the rule matches a VIP address and port configured
in the cipher suite parameter for a virtual SSL server entry in the SSL proxy list
(see the
"Specifying Cipher Suites"
For a back-end server, you can specify a Layer 5 cookie or URL rule. The
information in the rule finds a sticky server to use or load balances a new server
for a new client request.
For more information on Layer 5 sticky and content rules, refer to the Cisco
Content Services Switch Content Load-Balancing Configuration Guide.
Chapter 5
section).
Configuring Back-End SSL
OL-5655-01
Advertisement
Table of Contents
