Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
829
Views
0
Helpful
2
Replies

ACE SSL initiation via Proxy server (squid)

rjuchta
Level 1
Level 1

‎02-28-2014 12:33 PM

Hi,

is it possible to configure ACE with SSL initiation if the connection goes via http/https proxy (squid) ?

I mean local host is requesting http://xyz.com, ACE doing SSL and requesting https://xyz.com, not directly but via http/https proxy server (squid).

Thanks

Labels:
0 Helpful
2 Replies 2

Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎02-28-2014 02:00 PM

Hi Ryszard,

Yes, ACE can initiate SSL traffic and maintain SSL connection. So in SSL initiation ACE will act as a CLIENT receiving clear text HTTP traffic at the front end and sending traffic encrypted over the backend.

For more details please visit the below link and let me know if you have any questions.

http://www.cisco.com/c/en/us/td/docs/interfaces_modules/services_modules/ace/vA5_1_0/configuration/ssl/guide/sslgd/initiate.html#wp1010343

Regards,

Kanwal

0 Helpful

rjuchta
Level 1
Level 1
In response to Kanwaljeet Singh

‎03-02-2014 10:26 AM

Hi Kanwal,

thanks, but the thing is not that simple if you go through proxy server, the point is that http tunnel should be opened first. I'm not sure if ACE is able to handle the tunnel and the ssl connection ... But maybe it can be done by a proper http header rewriting ...

regards

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents