Cisco Community
English
Register
Certain Solid State Drives (SSD) modules will stop functioning at 40,000 power-on hours (~4.5 years) if firmware is not updated. REVIEW UPGRADE DETAILS HERE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
902
Views
0
Helpful
3
Replies
wshuffman
Beginner
Beginner
‎05-21-2012 06:51 AM
‎05-21-2012 06:51 AM

ACE SSL Offload Advantage on End to End SSL

Is there any advantages to doing SSL termination on ACE if you are doing End to End SSL?  It seems as thought it's just another place to manage certs, when you could just pass the port 443 traffic to the server and let it do the SSL decription/encryption. 

Labels:
0 Helpful
3 REPLIES 3
ciscocsoc
Enthusiast
Enthusiast
‎05-21-2012 08:41 AM
‎05-21-2012 08:41 AM

Hi,

If you terminate on the ACE before re-encrypting you have an opportunity to look at the underlying plaintext and make decisions (e.g. cookie values).

HTH

Cathy

0 Helpful
zhenningx
Enthusiast
Enthusiast
‎05-21-2012 09:00 AM
‎05-21-2012 09:00 AM

If you have multiple servers behind ace, you do not need to install multiple carts on each server.

Sent from Cisco Technical Support iPad App

0 Helpful
Surya ARBY
Enthusiast
Enthusiast
‎05-21-2012 11:35 AM
‎05-21-2012 11:35 AM

  • centralized point of management of your certs
  • performances (hardware-based)
  • you can use strong ciphers on the client side and weaker ciphers on the server sides, reducing the load on the servers
  • use of SSL Reuse combined to TCP offload

There are some whitepapers available on cisco.com on this topic.

0 Helpful
Latest Contents
**New Episode** Cisco Champion Radio: S8|E15 Intersight Clou...
Created by aalesna on 04-19-2021 07:39 PM
0
0
0
0
New Cisco Champion Radio release on Cisco Intersight Cloud Operations PlatformListen: https://smarturl.it/CCRS8E15Follow us: https://twitter.com/CiscoChampion Known as Project Starship when it was introduced in June 2017, Cisco Intersight has come a ... view more
#CiscoChat Live - Cisco and HashiCorp Deliver IaC Automation...
Created by Kelli Glass on 04-06-2021 03:33 PM
0
0
0
0
Join us live on Thursday, April 8 at 10 am PT (and on demand after) as we join Cisco and HashiCorp executives to discuss the importance of IaC automation, Intersight Service for Terraform, and how to better manage hybrid cloud infrastructure at scale... view more
#CiscoChat Live - Cisco and HashiCorp Deliver IaC Automation...
Created by Kelli Glass on 04-06-2021 03:24 PM
2
0
2
0
Join us live on Thursday, April 8 at 10 am PT (and on demand after) where Cisco and HashiCorp executives will discuss the importance of IaC automation, Cisco Intersight Service for Hashicorp Terraform, and how to better manage hybrid cloud infrastructure... view more
Cisco ACI Resources
Created by roxadiaz on 03-31-2021 11:10 AM
0
5
0
5
          Start       Design      Deploy    Integration  Learn    Best Practice      Start   What's new in Cisco ACI 5.1(3) Video - What's New in Ci... view more
Infrastructure as a Code for Cisco Cloud Solutions
Created by roxadiaz on 03-29-2021 02:31 PM
0
0
0
0
How to START with Infrastructure as a code for Cisco Cloud Solutions   ACI Ansible Modules Documentation Guide Cisco Collections on Ansible Galaxy   Cisco DevNet Learning Labs DevNet Introduction to ACI and Ansible DevNet Introduction to ACI a... view more
Content for Community-Ad