Chapter 8 Examples of CSS SSL Configurations
8-2
Cisco Content Services Switch SSL Configuration Guide
OL-5655-01
Figure 8-1 illustrates a CSS with three SSL modules (M1, M2, and M3)
configured to off load the SSL traffic from the back-end servers (ServerABC,
ServerDEF, and ServerGHI). Figure 8-1 also shows the CSS maintaining a
consistent stickiness between HTTP and SSL connections from the same client.
1. In a normal Web shopping-cart application, a transaction consists of multiple
HTTP connections for shopping or browsing, and a few SSL connections for
the final order placement and payment checkout sequence. The client must
remain stuck to the same server that holds the customer’s database
information during the entire transaction. During the initial HTTP
connections from a client to a server, the client is stuck to a server by using
Layer 5 HTTP cookies or a URL content rule. At checkout, the client
transitions to SSL connections.
Figure 8-1 CSS Configuration with Multiple SSL Modules
78264
Client A
ServerABC
ServerDEF
ServerGHI
L5/L4 HTTP
Content Rule
L5/L4 SSL
Content Rule
Port 80
Port 80
Web shopping
session
Payment/checkout
session
M3
M2
M1
SSL
Acceleration
Module
Port 80
Ethernet
connection
CSS 11506
Port 80
Port 443
Port 443
2
1
3
4
5
Internet
To Next Page
Loading...
Need help?
General
