Support User Manuals

Cisco Systems OL-7029-01 Switch User Manual

Open as PDF

of 342

3-68

Catalyst 6500 Series Switch Content Switching Module with SSL Command Reference

OL-7029-01

Chapter 3 Commands Specific to the Content Switching Module with SSL

ssl-proxy service

Both secured and bridge mode between the Content Switching Module (CSM) and the Content

Switching Module with SSL is supported.

Use the secondary keyword (optional) for bridge-mode topology.

Examples This example shows how to enter the proxy-service configuration submode:

ssl-proxy (config)# ssl-proxy service S6

ssl-proxy (config-ssl-proxy)#

This example shows how to configure the method for certificate verification:

ssl-proxy (config-ssl-proxy)# authenticate verify all

ssl-proxy (config-ssl-proxy)#

This example shows how to configure the certificate for the specified SSL-proxy services:

ssl-proxy (config-ssl-proxy)# certificate rsa general-purpose trustpoint tp1

ssl-proxy (config-ssl-proxy)#

These examples show how to set a specified command to its default value:

ssl-proxy (config-ssl-proxy)# default certificate

ssl-proxy (config-ssl-proxy)# default inservice

ssl-proxy (config-ssl-proxy)# default nat

ssl-proxy (config-ssl-proxy)# default server

ssl-proxy (config-ssl-proxy)# default virtual

ssl-proxy (config-ssl-proxy)#

This example shows how to apply a trusted-certificate authenticate configuration to a proxy server:

ssl-proxy (config-ssl-proxy)# trusted-ca test1

ssl-proxy (config-ssl-proxy)#

This example shows how to configure a virtual IP address for the specified virtual server:

ssl-proxy (config-ssl-proxy)# virtual ipaddr 207.59.100.20 protocol tcp port 443 secondary

ssl-proxy (config-ssl-proxy)#

This example shows how to configure the SSL policy for the specified virtual server:

ssl-proxy (config-ssl-proxy)# virtual policy ssl sslpl1

ssl-proxy (config-ssl-proxy)#

This example shows how to configure the TCP policy for the specified virtual server:

ssl-proxy (config-ssl-proxy)# virtual policy tcp tcppl1

ssl-proxy (config-ssl-proxy)#

This example shows how to configure a clear-text web server for the Content Switching Module with

SSL to forward the decrypted traffic:

ssl-proxy (config-ssl-proxy)# server ipaddr 207.50.0.50 protocol tcp port 80

ssl-proxy (config-ssl-proxy)#

This example shows how to configure a TCP policy for the given clear-text web server:

ssl-proxy (config-ssl-proxy)# server policy tcp tcppl1

ssl-proxy (config-ssl-proxy)#

previous next