Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
574
Views
0
Helpful
1
Replies

ACE SSL termination

Go to solution
syakshanulla
Level 1
Level 1

‎10-28-2011 05:07 PM

Hi,

Just wondering Is ACE capable of encrypting automatically for return packets when it does SSL offloading. Means we are offloading SSL on ACE, When the ACE sends back the response to Client will it automatically encrypts? if yes please explain how.

Thanks

syaksha

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
asharmav
Level 1
Level 1

‎10-28-2011 06:40 PM

Hi Syaksha,

Yes ACE is capable of doing the encryption on the return traffic back to the client , during SSL offload if the ace does not encrypt the traffic back to the client , the connection will never get established since the client is expecting the return traffic to be on a secure channel.

SSL offload or termination refers to the ace deployment mode where in ACE will ace like a SSL proxy server and all the connections between the client and the ace are always encrypted and the connections between ace to your server will be in clear text.

Ace will use the same certificates to encrypt data back which it would have used to do SSL termination

A good document on ACE SSL can be found here

http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A1/configuration/ssl/guide/overview.html#wp1011355

Regards

Abijith

View solution in original post

0 Helpful
1 Reply 1

Go to solution
asharmav
Level 1
Level 1

‎10-28-2011 06:40 PM

Hi Syaksha,

Yes ACE is capable of doing the encryption on the return traffic back to the client , during SSL offload if the ace does not encrypt the traffic back to the client , the connection will never get established since the client is expecting the return traffic to be on a secure channel.

SSL offload or termination refers to the ace deployment mode where in ACE will ace like a SSL proxy server and all the connections between the client and the ace are always encrypted and the connections between ace to your server will be in clear text.

Ace will use the same certificates to encrypt data back which it would have used to do SSL termination

A good document on ACE SSL can be found here

http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A1/configuration/ssl/guide/overview.html#wp1011355

Regards

Abijith

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card