CHAPTER16 Services
Mediant 1000 Gateway & E-SBC | User's Manual
Parameter Description
'Device Scheme'
device-scheme
[OVOCService_
DeviceScheme]
Defines the protocol for communication with the requesting
client.
â– [0] HTTP (default)
â– [1] HTTPS
Note: If configured to HTTPS, you must assign a TLS Context
(see the 'Device Login TLS Context' parameter, below).
'Device Login TLS Context'
device-login-tls-
context
[OVOCService_
LoginInterfaceTLSContext]
Assigns a TLS Context (TLS certificate) for the interface with
the requesting client. This is required if you have configured the
'Device Scheme' parameter to HTTPS (see above). To
configure TLS Contexts, see Configuring TLS Certificate
Contexts on page123.
Note: The NGINX directive for this parameter is "proxy_ssl_
certificate", "proxy_ssl_certificate_key", "proxy_ssl_ciphers",
and "proxy_ssl_protocols".
'Device Login Interface
Verify Certificate'
device-interface-
verify-cert
[OVOCService_
LoginInterfaceVerifyCert]
Enables the verification of the TLS certificate that is used in the
incoming client connection request.
â– [0] No = (Default) No certificate verification is done.
â– [1] Yes = The device verifies the authentication of the
certificate received from the client. The device authenticates
the certificate against the trusted root certificate store
associated with the assigned TLS Context (see 'Device
Login TLS Context' parameter above) and if ok, allows
communication with the client. If authentication fails, the
device denies communication (i.e., handshake fails). The
device can also authenticate the certificate by querying with
an Online Certificate Status Protocol (OCSP) server
whether the certificate has been revoked. This is also
configured for the associated TLS Context.
Note: The NGINX directive for this parameter is "proxy_ssl_
verify".
OVOC
'OVOC Listening Interface'
ovoc-interface
[OVOCService_
EMSListeningInterface]
Assigns an IP network interface (local, listening HTTP
interface:port) for communication with OVOC. To configure IP
Interfaces, see Configuring IP Network Interfaces on page97.
By default, no value is defined.
Note:
â– The parameter is mandatory.
â– The NGINX directive for this parameter is "proxy_bind".
'OVOC Listening Port'
ovoc-port
[OVOCService_
EMSListeningPort]
Defines the listening port for the OVOC interface.
Note: The NGINX directive for this parameter is "proxy_bind".
'OVOC Scheme'
ovoc-scheme
Defines the security scheme for the connection with OVOC.
â– [0] HTTP (default)
- 276 -
To Next Page
Loading...
Need help?
General
