2-104
Catalyst6500 Series Switch WebVPN Module Command Reference—Release 1.1
OL-7310-01
Chapter2 Commands for the Catalyst 6500 Series Switch WebVPN Module
webvpn policy ssl
webvpn policy sslToenter the SSL-policy configuration submode, use the webvpn policy ssl command. In the SSL-policy
configuration submode, you can define the SSL policy for one or more SSL-proxy services.
webvpn policy ssl ssl-policy-name
Syntax Description
Defaults The defaults are as follows:
•cipher is all.
•close-protocol is enabled.
•session-caching is enabled.
•version is all.
•session-cache size size is 262143 entries.
•timeout session timeoutis 0 seconds.
•timeout handshake timeoutis 0 seconds.
•tls-rollback is disabled.
Command Modes Global configuration
Command History
Usage Guidelines Each SSL-policy configuration submode command is entered on its own line.
Table2-10 lists the commands available in SSL-policy configuration submode.
ssl-policy-name SSL policy name.
Release Modification
WebVPN Module
Release 1.1 Support for this command was introduced on the Catalyst 6500 series
switches.
Table2-10 SSL-Policy Configuration Submode Command Descriptions
cipher-suite
{RSA_WITH_3DES_EDE_CBC_SHA |
RSA_WITH_DES_CBC_SHA |
RSA_WITH_RC4_128_MD5 |
RSA_WITH_RC4_128_SHA |all}
Allowsyou to configure a list of cipher-suites acceptable to the proxy-server.
[no]close-protocol enable Allows you to configure the SSL close-protocol behavior. Use theno form
of this command to disable close protocol.
default {cipher | close-protocol |
session-cache | version}Sets a command to its default settings.