186 ServerIron ADX Security Guide
53-1002440-03
Configuration Examples for SSL Termination and Proxy Modes
6
NOTE
Please note that the connection count for the SSLv2 rate includes both client-side (Terminate /
Proxy) and server-side (Proxy) connections.
Configuring memory limit for SSL hardware buffers
You can configure the maximum memory allocated for the buffers accessed by the SSL hardware,
as shown in the following example.
ServerIronADX(config)# ssl mem-size 64
The <size> variable sets the maximum memory for SSL hardware buffers in MB (1048576 bytes).
Valid range: 64MB to 256MB
Default: 96MB
Configuring number of ssl profiles
You can configure the maximum number of SSL profiles, as shown in the following example:
ServerIronADX(config)#system-max ssl-max-profiles 64
Syntax: [no] system-max ssl-max-profiles <num-max-profiles>
The <num-max-profiles> variable sets the maximum number of SSL profiles.
Valid range: 64 to 2048 (ADX10000,4000), 64 to 1024 (ADX1000)
Default: 1024 (ADX10000,4000), 256 (ADX1000)
Configuring the maximum number of SSL concurrent connections
Use the system-max ssl-concurrent-conn command to set the maximum number of SSL concurrent
connections, as shown in the following.
ServerIronADX# system-max ssl-concurrent-conn 1024
Syntax: [no] system-max ssl-concurrent-conn <number-of-ssl-connections>
The <number-of-ssl-connections> variable sets the maximum number of SSL concurrent
connections.
Valid range: 1024 to 16384(ADX4000,10000), 512 to 16384 (ADX1000).
Default: 8192