Configuring the domain 99
Table 6
Configuring SSL server (cont’d.)
/cfg/domain #/server
followed by:
ssl
Accesses the SSL Settings menu, in order to
configure SSL settings for the portal server (see
“Configuring SSL settings” (page 102)).
adv
Accesses the Advance settings menu, in order
to configure traffic log settings for a syslog server
(see “Configuring traffic log settings” (page 105)).
Tracing SSL traffic
To verify connectivity and to capture information about SSL and TCP traffic
between clients and the portal server, use the following command:
/cfg/domain #/server/trace
The Trace menu appears.
The Trace menu includes the following options:
Table 7
Tracing SSL traffic
/cfg/domain #/server/trace
followed by:
ssldump
Creates a dump of the SSL traffic flowing
between clients and the portal server. You are
prompted to enter the following information:
• ssldump flags and ssldump
filter—for more information about
the flags and filter expressions available for
SSLDUMP using UNIX, see h
ttp://www.tcpd
ump.org/tcpdump_man.html.
• output mode
Options for the output mode are:
• interactive—captured information
decrypted on the screen. SSLDUMP
cannot decrypt any traffic if it is started after
the browser. SSLDUMP must be running
during the initial SSL handshake.
• tftp|ftp|sftp—the dump will be saved
as a file to the file exchange server you
specify, using a destination file name you
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100 03.01 Standard
28 July 2008
Copyright © 2007, 2008 Nortel Networks
.