64 Chapter 2 Configuring servers
Figure 9 SSL administration
SSL/TLS uses TCP port 443 for secure HTTP communication. Interface and
tunnel filters govern HTTPS packets destined for the management IP address. If
you enable tunnel filters, HTTPS must be allowed for SSL management through a
VPN tunnel.
The Stateful Firewall applies only to HTTPS traffic routed through the device, not
to the management IP address.
The VPN Router uses HTTPS services for Firewall User Authentication (FWUA)
and SSL-enabled administration.
The following cipher combinations are available:
•
•
•
•
•
•
•
•
•
•
NN46110-600
(DHE_RSA_WITH_3DES_EDE_CBC_SHA, 0x16)
(RSA_WITH_3DES_EDE_CBC_SHA, 0x0a)
(RSA_WITH_RC4_128_SHA, 0x05)
(RSA_WITH_RC4_128_MD5, 0x04)
(RSA_EXPORT1024_WITH_RC4_56_SHA, 0x64)
(RSA_EXPORT1024_WITH_DES_CBC_SHA, 0x62)
(RSA_EXPORT1024_WITH_RC4_56_MD5, 0x60)
(DHE_RSA_WITH_DES_CBC_SHA, 0x15)
(RSA_WITH_DES_CBC_SHA, 0x09)
(DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, 0x14)