Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1123
Views
0
Helpful
3
Replies

ACE SSL Offload Advantage on End to End SSL

wshuffman
Level 1
Level 1

‎05-21-2012 06:51 AM

Is there any advantages to doing SSL termination on ACE if you are doing End to End SSL?  It seems as thought it's just another place to manage certs, when you could just pass the port 443 traffic to the server and let it do the SSL decription/encryption. 

Labels:
0 Helpful
3 Replies 3

ciscocsoc
Level 4
Level 4

‎05-21-2012 08:41 AM

Hi,

If you terminate on the ACE before re-encrypting you have an opportunity to look at the underlying plaintext and make decisions (e.g. cookie values).

HTH

Cathy

0 Helpful

zhenningx
Level 4
Level 4

‎05-21-2012 09:00 AM

If you have multiple servers behind ace, you do not need to install multiple carts on each server.

Sent from Cisco Technical Support iPad App

0 Helpful

Surya ARBY
Level 4
Level 4

‎05-21-2012 11:35 AM

  • centralized point of management of your certs
  • performances (hardware-based)
  • you can use strong ciphers on the client side and weaker ciphers on the server sides, reducing the load on the servers
  • use of SSL Reuse combined to TCP offload

There are some whitepapers available on cisco.com on this topic.

0 Helpful
Customers Also Viewed These Support Documents