Web Site Changes; Transparent Local-Listen - Cisco CSS11501 - 100Mbps Ethernet Load Balancing Device Configuration Manual
11000 series secure content accelerator
Hide thumbs
Also See for CSS11501 - 100Mbps Ethernet Load Balancing Device:
- Hardware installation manual (184 pages) ,
- Datasheet (10 pages) ,
- Product support bulletin (3 pages)
Table of Contents
Advertisement
Appendix B
Deployment Examples
Web Site Changes
Note
Transparent Local-Listen
78-13124-05
You must make changes to your existing Web pages before users can access them.
1.
Install and configure the Secure Content Accelerator.
Create a non-secure ("http://"-prefixed) Web page as an entry point for the
2.
Web site. Include some method of transferring the user to the secure
("https://"-prefixed) URL. You may use a button, hypertext link, image map,
automatic redirection, or any other method you choose.
If your site does not use relative links, change the "http://" portion of every
3.
link (including graphic links) to "https://"; otherwise, links should remain the
same.
If you are using IIS and have a redirection in your Web page, the
URL must have a trailing slash ("/") to work properly, e.g.,
<href="/issamples/default/learn/">.
The transparent local-listen mode of operation was added to broaden
compatibility between offloaders and some models of load-balancing and
content-switching gear. Additionally, it enables transparent mode interoperation
with the CSS without having to use the type transparent-cache or the no
cache-bypass directives within the services definitions. This simplifies ACL
implementations, as well as the overall configuration on the CSS.
Transparent local-listen is a hybrid of transparent and no transparent modes,
and can be defined only when a logical SSL server is operating in transparent
mode. If a logical SSL server is operating in no transparent mode, transparent
mode must first be enabled before attempting to define transparent local-listen or
a warning will be issued and the command will fail.
Since—as the name implies—transparent local-listen uses a local-listening
socket for inbound SSL connections (precisely as no transparent does) unique
listening ports must be defined to host multiple logical SSL servers. Unlike
conventional transparent mode, the IP address specified within the configuration
will not be used to listen for inbound traffic, but rather only for sending outbound
Cisco 11000 Series Secure Content Accelerator Configuration Guide
Web Site Changes
B-31
Advertisement
Table of Contents
Troubleshooting
