https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592129#M11247 <HTML><HEAD></HEAD><BODY><P>Gilles, Thx for quick reply.</P><P></P><P>We do have SSL Module combined with CSM. Can we do something in this case? I heard that, there is a SSL probe script(TCL) available which can be used for SSL probe. Are you aware of it?</P><P></P><P>Q.Xie</P></BODY></HTML> Wed, 28 Jun 2006 20:51:34 GMT qixie 2006-06-28T20:51:34Z https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592127#M11245 <P>We are currently using TCP probe for HTTPS webServer health checking. Is there a HTTPS or SSL probe available on CSM to send a url to detect if the HTTPS Apache WebServer is up or not?</P><P></P><P>Many Thx, Q.Xie</P> Tue, 27 Jun 2006 21:33:49 GMT https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592127#M11245 qixie 2006-06-27T21:33:49Z https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592128#M11246 <HTML><HEAD></HEAD><BODY><P>no, there is not such option because the CSM does not have the capability to do encryption/decryption.</P><P>The CSS does have this option if you have the SSL module.</P><P></P><P>Gilles.</P></BODY></HTML> Wed, 28 Jun 2006 06:56:12 GMT https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592128#M11246 Gilles Dufour 2006-06-28T06:56:12Z https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592129#M11247 <HTML><HEAD></HEAD><BODY><P>Gilles, Thx for quick reply.</P><P></P><P>We do have SSL Module combined with CSM. Can we do something in this case? I heard that, there is a SSL probe script(TCL) available which can be used for SSL probe. Are you aware of it?</P><P></P><P>Q.Xie</P></BODY></HTML> Wed, 28 Jun 2006 20:51:34 GMT https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592129#M11247 qixie 2006-06-28T20:51:34Z https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592130#M11248 <HTML><HEAD></HEAD><BODY><P>You can download the TCL script file from the same locstion as the CSM software.</P><P></P><P>In this TCL file you should find the following scripts</P><P>[root@linux-1 cisco]# cat /tftpboot/c6slb-apc.4-2-1.tcl | grep -i "name ="</P><P>#!name = CHECKPORT_STD_SCRIPT</P><P>#!name = ECHO_PROBE_SCRIPT</P><P>#!name = FINGER_PROBE_SCRIPT</P><P>#!name = FTP_PROBE_SCRIPT</P><P>#!name = HTTPCONTENT_PROBE</P><P>#!name = HTTPHEADER_PROBE</P><P>#!name = HTTPPROXY_PROBE</P><P>#!name = HTTP_PROBE_SCRIPT</P><P>#!name = IMAP_PROBE</P><P>#!name = LDAP_PROBE</P><P>#!name = MAIL_PROBE</P><P>#!name = POP3_PROBE</P><P>#!name = PROBENOTICE_PROBE</P><P>#!name = RTSP_PROBE</P><P>#!name = SSL_PROBE_SCRIPT</P><P>#!name = TFTP_PROBE</P><P></P><P></P><P>There is a SSL_PROBE_SCRIPT that will verify that the SSL server respond to a client SSL HELLO message.</P><P>It does not verify if you can send an HTTP request.</P><P>It only sends a HELLO as a client and wait for the server HELLO.</P><P></P><P>With the SSLM for the CSM, there might be a way to achieve HTTPS probe.</P><P>I never tried it, but the solution I see would be to create an HTTP probe on the CSM and direct to the SSLM which will do the encryption and forward it to the server.</P><P></P><P>Regards,</P><P></P><P>Gilles</P></BODY></HTML> Thu, 29 Jun 2006 05:24:56 GMT https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592130#M11248 Gilles Dufour 2006-06-29T05:24:56Z https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592131#M11249 <HTML><HEAD></HEAD><BODY><P>Thanks Gilles. I like the idea to send a HTTP probe to HTTPS via SSLM. Will try that. Q.Xie</P></BODY></HTML> Mon, 24 Jul 2006 17:50:37 GMT https://community.cisco.com/t5/application-networking/csm-https-or-ssl-health-probe/m-p/592131#M11249 qixie 2006-07-24T17:50:37Z