cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
574
Views
0
Helpful
1
Replies

ACE SSL termination

syakshanulla
Level 1
Level 1

Hi,

Just wondering Is ACE capable of encrypting automatically for return packets when it does SSL offloading. Means we are offloading SSL on ACE, When the ACE sends back the response to Client will it automatically encrypts? if yes please explain how.

Thanks

syaksha

1 Accepted Solution

Accepted Solutions

asharmav
Level 1
Level 1

Hi Syaksha,

Yes ACE is capable of doing the encryption on the return traffic back to the client , during SSL offload if the ace does not encrypt the traffic back to the client , the connection will never get established since the client is expecting the return traffic to be on a secure channel.

SSL offload or termination refers to the ace deployment mode where in ACE will ace like a SSL proxy server and all the connections between the client and the ace are always encrypted and the connections between ace to your server will be in clear text.

Ace will use the same certificates to encrypt data back which it would have used to do SSL termination

A good document on ACE SSL can be found here

http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A1/configuration/ssl/guide/overview.html#wp1011355

Regards

Abijith

View solution in original post

1 Reply 1

asharmav
Level 1
Level 1

Hi Syaksha,

Yes ACE is capable of doing the encryption on the return traffic back to the client , during SSL offload if the ace does not encrypt the traffic back to the client , the connection will never get established since the client is expecting the return traffic to be on a secure channel.

SSL offload or termination refers to the ace deployment mode where in ACE will ace like a SSL proxy server and all the connections between the client and the ace are always encrypted and the connections between ace to your server will be in clear text.

Ace will use the same certificates to encrypt data back which it would have used to do SSL termination

A good document on ACE SSL can be found here

http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A1/configuration/ssl/guide/overview.html#wp1011355

Regards

Abijith

Review Cisco Networking for a $25 gift card