Radware Alteon Application Manual page 354

Alteon Application Switch Operating System Application Guide
Offloading SSL Encryption and Authentication
>> Main# /cfg/slb/ssl/sslpol myPol
>> SSL Policy myPol# fessl disable
>> SSL Policy myPol# bessl enable
>> SSL Policy myPol# becipher high
>> SSL Policy myPol# ena
3. Globally enable SSL.
>> Main# /cfg/slb/ssl/on
4. Set the HTTP virtual service to be used in the defined virtual server.
>> Main# /cfg/slb/virt 1/service http
>> Virtual Server 1 80 http Service# group 1
>> Virtual Server 1 80 http Service# ssl
>> SSL Load Balancing# sslpol myPol
Note: The back-end server listening port (rport) is set to 80 (vport). For a different network
setting, rport can be configured manually. If the back-end server listening port was previously
configured to a specific port, it will not be modified and must be configured manually if required.
5. Enable DAM or configure proxy IP addresses, and enable proxy on the client port.
6. When using back-end encryption, Radware recommends using multiplexing to minimize the
server load of performing new SSL handshakes. For more details on multiplexing, see
Intelligent Connection Management, page
354
(Define an ID to identify the SSL
Policy. The ID may be alphanumeric or
numeric.)
(Disable front-end SSL)
(Enable back-end SSL)
(Set the cipher to be used for
back-end connections)
(Enable the policy)
(Define the HTTP service)
(Associate the server group to be
used with that service)
(Access the SSL menu for the
HTTP service)
(Associate the defined SSL policy)
277.
Document ID: RDWR-ALOS-V2900_AG1302
Content-