Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
735
Views
0
Helpful
2
Replies

ace mixed-content ssl termination

Go to solution
luckymike33
Level 1
Level 1

‎05-20-2015 12:35 PM

Hi,

 

I have an issue here - we are performing ssl-termination on the ACE for the first time, having normally terminated the ssl on the servers. The issue is that the https pages are not rendering properly - I know that the links that are not rendering are the http links, so we are talking about mixed content here.

Is there anything that can be done on the ACE to resolve this?

 

Another small issue is that the pages delivered via the ACE do seem slightly worse compared to pages delivered direct from the real server, which is not helping the cause of the ACE very much.

 

Any help or advice provided will be gratefully received.

 

Mike

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎05-21-2015 07:59 PM

Hi Mike,

 

When you say pages not rendering properly, what do you exactly mean? If you are seeing plain http links on the page, then you can rewrite them using action-list on ACE.

Regarding the pages delivered via ace looking slightly worse, we need to check why does that happen. Normally whatever server is sending, we are encrypting and presenting it to the client. If there is something which ACE is doing here, we can check by taking the pcap on server as well as client and see if the content differs. You will need the private key to decrypt the captures on client.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎05-21-2015 07:59 PM

Hi Mike,

 

When you say pages not rendering properly, what do you exactly mean? If you are seeing plain http links on the page, then you can rewrite them using action-list on ACE.

Regarding the pages delivered via ace looking slightly worse, we need to check why does that happen. Normally whatever server is sending, we are encrypting and presenting it to the client. If there is something which ACE is doing here, we can check by taking the pcap on server as well as client and see if the content differs. You will need the private key to decrypt the captures on client.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

0 Helpful

Go to solution
luckymike33
Level 1
Level 1
In response to Kanwaljeet Singh

‎05-22-2015 04:03 AM

Hi Kanwal,

 

Yes - pages not rendering in this instance means plain http links on a https page, and some style elements seem to be being filtered out too.

I think we may end up looking at the action-lists - not a feature we were already aware of, so thank you for that advice.

 

Thanks again.

 

Mike

 

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card