Alteon Application Switch Operating System Application Guide
Offloading SSL Encryption and Authentication
352 Document ID: RDWR-ALOS-V2900_AG1302
Note: Each of the created objects in this procedure must be enabled.
7. Apply and save your configuration.
Example 5: Configuring an SSL Offloading Service with Client Authentication
1. Before you can configure an SSL offloading service, ensure that Alteon is configured for basic
SLB:
— Assign an IP address to each of the real servers in the server pool.
— Define an IP interface.
— Define each real server.
— Assign servers to real server groups.
— Enable SLB.
— Define server port and client port.
— Define virtual server.
For more information on how to configure Alteon for SLB, see Server Load Balancing, page 165
.
2. Define the SSL offloading service which will govern the SSL offloading behavior.
— For basic SSL offloading, see Example 1: Configuring a Basic SSL Offloading Service, page
343.
— For SSL offloading with back-end encryption enabled, see Example 3: Configuring an SSL
Offloading Service with Back-End Encryption, page 347.
>> HTTP Content Class 1# /cfg/slb/layer7/slb/
cntclss 1/hostname 1
>> Hostname 1# hostname
Current hostname to match:
Enter new hostname to match: mydomain.com
>> Hostname 1# match
Current matching type: include
Enter new matching type
[sufx|prefx|equal|include|regex]: eq
(Create a content switching rule
for each of the domains)
>> Hostname 1# /cfg/slb/virt 1/service 443
>> Virtual Server 1 443 https Service# cntrules 1
>> HTTPS Content Rule 1# cntclss
Current content class:
Enter new content class or none: domain1
For content class updates use /cfg/slb/layer7/slb
(Associate the defined content
class for every rule)
>> HTTPS Content Rule 1# group 10
Current real server group: 1
New pending real server group: 10
(Select the server group to be
used for serving each of the
domains)
To Next Page
Loading...
Need help?
General