Cisco 11503 - CSS Content Services Switch - Figure 8-6 Full Proxy Configuration Using a Single SSL Module

To Next Page

To Previous Page

Chapter 8 Examples of CSS SSL Configurations

8-18

Cisco Content Services Switch SSL Configuration Guide

OL-5655-01

Figure 8-6 Full Proxy Configuration Using a Single SSL Module

!*************************** GLOBAL ***************************

logging commands enable

ssl associate dsakey dsakey dsakey.pem

ssl associate dhparams dhparams dhparams.pem

ssl associate rsakey rsakey rsakey.pem

ssl associate cert rsacert rsacert.pem

ftp-record ssl_record 161.44.174.127 anonymous des-password

deye2gtcld1b6feeeebabfcfagyezc5f /

78268

Client A

Client IP address

172.16.6.58

Source = 172.16.6.58

Destination = 192.168.5.5

Layer 5 http-rule

Source group

ssl_module_proxy

translates IP 172.16.6.58

to VIP 192.168.7.200

Layer 5 ssl-rule

SSL

Acceleration

Module 1

VIP = 192.168.5.5

CSS 11506

Internet

ServerABC

192.168.7.1

ServerDEF

192.168.7.2

ServerGHI

192.168.7.3

Source = 192.168.7.200

Destination = 192.168.7.1

Ethernet

connection

Main Page

Default Chapter3
- Table of Contents3
Preface15
Chapter 1 Overview of CSS SSL27
Chapter 2 SSL Configuration Quick Starts39
Table 2-9 SSL Initiation Content Rule Quick Start58
Chapter 3 Configuring SSL Certificates and Keys61
Chapter 4 Configuring SSL Termination84
CHAPTER 5 Configuring Back-End SSL137
CHAPTER 6 Configuring SSL Initiation159
CHAPTER 7 Displaying SSL Configuration Information and Statistics189
Chapter 8 Examples of CSS SSL Configurations215

Cisco 11503 - CSS Content Services Switch

Table of Contents

Other manuals for Cisco 11503 - CSS Content Services Switch

Related product manuals