Name: Cisco Catalyst 2960-XR
Brand: Cisco
Rating: 5 (1 reviews)

To Next Page

To Previous Page

PurposeCommand or Action

(Optional) Specifies the CipherSuites (encryption algorithms) to be used

for encryption over the HTTPS connection. If you do not have a reason

ip http secure-ciphersuite

{[3des-ede-cbc-sha] [rc4-128-md5]

[rc4-128-sha] [des-cbc-sha]}

Step 5

to specify a particularly CipherSuite, you should allow the server and

client to negotiate a CipherSuite that they both support. This is the

default.

Example:

Switch(config)# ip http

secure-ciphersuite rc4-128-md5

(Optional) Configures the HTTP server to request an X.509v3 certificate

from the client for authentication during the connection process. The

ip http secure-client-auth

Example:

Switch(config)# ip http

Step 6

default is for the client to request a certificate from the server, but the

server does not attempt to authenticate the client.

secure-client-auth

Specifies the CA trustpoint to use to get an X.509v3 security certificate

and to authenticate the client certificate connection.

ip http secure-trustpoint name

Example:

Switch(config)# ip http

Step 7

Use of this command assumes you have already configured a

CA trustpoint according to the previous procedure.

Note

secure-trustpoint your_trustpoint

(Optional) Sets a base HTTP path for HTML files. The path specifies

the location of the HTTP server files on the local system (usually located

in system flash memory).

ip http path path-name

Example:

Switch(config)# ip http path

Step 8

/your_server:80

(Optional) Specifies an access list to use to allow access to the HTTP

server.

ip http access-class access-list-number

Example:

Switch(config)# ip http access-class 2

Step 9

(Optional) Sets the maximum number of concurrent connections that

are allowed to the HTTP server. The range is 1 to 16; the default value

is 5.

ip http max-connections value

Example:

Switch(config)# ip http max-connections

Step 10

(Optional) Specifies how long a connection to the HTTP server can

remain open under the defined circumstances:

ip http timeout-policy idle seconds life

seconds requests value

Step 11

Catalyst 2960-XR Switch Security Configuration Guide, Cisco IOS Release 15.0(2)EX1

OL-29434-01 101

Configuring Secure Socket Layer HTTP

Configuring the Secure HTTP Server

Other manuals for Cisco Catalyst 2960-XR

Reference52 pages

Configuration Guide196 pages

Configuration Guides120 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 2960-XR and is the answer not in the manual?

Cisco Catalyst 2960-XR Specifications

General

Stacking Bandwidth	80 Gbps
Layer Support	Layer 2 and Layer 3
Jumbo Frame Support	9198 bytes
RAM	512 MB
Input Voltage	100-240V AC
Model	Catalyst 2960-XR
Uplink Interfaces	4 x 1G SFP or 2 x 10G SFP+
Downlink Interfaces	24 or 48 x Gigabit Ethernet ports
Power Supply	Internal
MAC Address Table Size	16, 000 entries
PoE	Available on PoE models
Weight	4.5 kg
Features	energy efficiency
Stacking	Up to 8 switches
Operating Temperature	0 to 45°C