Nortel Secure Network Access Switch; Using The Command Line Interface - Nortel 325 series Cli Manual

Table 8
Configuring SSL Settings (cont'd.)
/cfg/domain #/server/ssl
followed by:
ena
[<bool>]
dis
[<bool>]
Configuring traffic log settings
You can configure a syslog server to receive User Datagram Protocol
(UDP) syslog messages for all HTTP requests handled by the portal
server.
Nortel does not recommend routinely enabling this functionality for the
following reasons:
•
•
•
Enable traffic logging with syslog messages in environments where laws or
regulations require traffic logging to be performed on the SSL terminating
device itself. You can also enable it temporarily for debugging purposes.
Copyright © 2007, 2008 Nortel Networks
.
Logging traffic with syslog messages generates a substantial amount
of network traffic.
Logging traffic places an additional CPU load on each Nortel SNAS
device in the cluster.
In general, syslog servers are not intended for the traffic type of log
message. Therefore, the syslog server might not be able to cope with
the quantity of syslog messages generated within a cluster of Nortel
SNAS devices.

Nortel Secure Network Access Switch

Using the Command Line Interface

NN47230-100 03.01 Standard
28 July 2008
Configuring the domain 105
included in the backend servers' list of preferred
ciphers as the SSL connection will otherwise be
refused.
Specifies the cipher preference list.
•
cipher list is an expression that consists
of cipher strings separated by colons. The
default cipher list is ALL@STRENGTH.
For more information about cipher lists, see
"Supported ciphers" (page
Enables SSL on the portal server.
SSL is enabled by default.
Disables SSL on the portal server.
SSL is enabled by default.
483).