Cisco 11503 - CSS Content Services Switch Configuration Manual page 54

Content services switch ssl configuration guide

Hide thumbs Also See for 11503 - CSS Content Services Switch:

Administration manual (392 pages)

Hardware installation manual (184 pages)

Getting started manual (142 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

Table of Contents

Table 2-7

Task and Command Example

10.

Cisco Content Services Switch SSL Configuration Guide

2-16

Back-End SSL Service and Content Rule Quick Start (continued)

(Optional) Configure a virtual port number for the back-end server. The port

number must match the virtual TCP port number configured for the

back-end server. By default, the port number is 80. In this example, the port

number is 8080.

(config-service[ssl_serv2])# port 8080

(Optional) By default, the service keepalive type is ICMP. You can also

configure the keepalive type for a back-end service to be none, TCP, or SSL. If

you configure a TCP or SSL keepalive type, you must configure the keepalive

port correctly for the service to work.

For example, to configure a keepalive type of SSL, enter.

(config-service[ssl_serv2])# keepalive type ssl

Then configure the port for the back-end SSL server. For example, enter:

(config-service[ssl_serv2])# keepalive port 443

Add the SSL proxy list to the SSL service.

(config-service[ssl_serv2])# add ssl-proxy-list ssl_list1

Activate the SSL service.

(config-service[ssl_serv2])# active

Add the back-end server to an SSL content rule.

(config)# owner ssl_owner

(config-owner[ssl_owner])# content ssl_backend_rule1

Create content <ssl_backend_rule1>, [y/n]: y

Configure a virtual IP (VIP) address or domain name for the content rule.

Ensure that the VIP address for the content rule is the same as the address

specified for the virtual SSL server.

(config-owner-content[ssl_backend_rule1]# vip address 192.168.3.6

Specify a TCP port number for the content rule. Ensure the port number is

the same as the virtual TCP port specified for the back-end SSL entry in the

SSL proxy list.

(config-owner-content[ssl_backend_rule1]# port 8080

Chapter 2

SSL Configuration Quick Starts

OL-5655-01

Table of Contents

Related Products for Cisco 11503 - CSS Content Services Switch

This manual is also suitable for:

11500 series

Cisco 11503 - CSS Content Services Switch Configuration Manual page 54

Related Manuals for Cisco 11503 - CSS Content Services Switch

Related Products for Cisco 11503 - CSS Content Services Switch

This manual is also suitable for:

Table of Contents