Chapter 2 Commands for the Catalyst 6500 Series SSL Services Module

service

Table 2-8 Proxy-service Configuration Submode Command Descriptions (continued)

Syntax

Description

 

 

virtual policy ssl ssl-policy-name

Applies an SSL policy with the client side of a proxy server.

 

 

virtual policy tcp

Applies a TCP policy to the client side of a proxy server.

client-side-tcp-policy-name

 

 

 

vlan vlan

Virtual Service VLAN configuration

 

 

Both secured and bridge mode between the Content Switching Module (CSM) and the SSL Services Module is supported.

Use the secondary keyword (optional) for bridge-mode topology.

Examples

This example shows how to enter the proxy-service configuration submode:

ssl-proxy (config)# ssl-proxy context s1 ssl-proxy(config-context)#service S6 ssl-proxy(config-ctx-ssl-proxy)#

This example shows how to configure the method for certificate verification:

ssl-proxy (config-ctx-ssl-proxy)# authenticate verify all ssl-proxy (config-ctx-ssl-proxy)#

This example shows how to configure the certificate for the specified SSL-proxy services:

ssl-proxy(config-ctx-ssl-proxy)#certificate rsa general-purpose trustpoint tp1

ssl-proxy (config-ctx-ssl-proxy)#

These examples show how to set a specified command to its default value:

ssl-proxy (config-ctx-ssl-proxy)# default certificate ssl-proxy (config-ctx-ssl-proxy)# default inservice ssl-proxy (config-ctx-ssl-proxy)# default nat ssl-proxy (config-ctx-ssl-proxy)# default server ssl-proxy (config-ctx-ssl-proxy)# default virtual ssl-proxy (config-ctx-ssl-proxy)#

This example shows how to apply a trusted-certificate authenticate configuration to a proxy server:

ssl-proxy (config-ctx-ssl-proxy)# trusted-ca test1 ssl-proxy (config-ctx-ssl-proxy)#

This example shows how to configure a virtual IP address for the specified virtual server:

ssl-proxy(config-ctx-ssl-proxy)#virtual ipaddr 207.59.100.20 protocol tcp port 443

ssl-proxy (config-ctx-ssl-proxy)#

This example shows how to configure the SSL policy for the specified virtual server:

ssl-proxy (config-ctx-ssl-proxy)# virtual policy ssl sslpl1

ssl-proxy (config-ctx-ssl-proxy)#

This example shows how to configure the TCP policy for the specified virtual server:

ssl-proxy (config-ctx-ssl-proxy)# virtual policy tcp tcppl1 ssl-proxy (config-ctx-ssl-proxy)#

Catalyst 6500 Series Switch SSL Services Module Command Reference

2-54

OL-9105-01

 

 

Page 80
Image 80
Cisco Systems 6500 manual Virtual policy ssl ssl-policy-name, Virtual policy tcp, Vlan vlan