Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
533
Views
0
Helpful
1
Replies

cisco ACE SSL termination

Naren naren
Level 1
Level 1

‎12-14-2010 12:45 PM

Hello Friends,

Need ur help on cisco ACE SSL termination.

If i import the certificate and key (.PEM), where this files will be saved ?

can we able to download the .PEM file any time as we need(back-up)?

suppose if my .PEM is got hacked, hacker is sniffing the data packet which going through the web server, can it be possiable to deencrypt the packet and see the exact packet ?

Regards,
Naren

Labels:
0 Helpful
1 Reply 1

mgalazka
Level 1
Level 1

‎12-14-2010 02:08 PM

Naren,

1. In order to import certs and keys, please see the following link to the command reference.  To summarize, any time you import/export/delete keys/certs, you are doing so via commands in exec mode.  Regarding how and where the ACE actually saves this information, I do not know this answer.

http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A2/command/reference/execmds.html#wp1616651

2. You can import a key as non-exportable if you do not want it to be able to be exported. If you import it as exportable, you can always export it later for backups or what not.

3. You can decrypt captured HTTPS traffic if you have the private key.  It is important to limit access to it.  Please see this link for more info on using Wireshark to view decrypted HTTPS traffic: http://wiki.wireshark.org/SSL

Hope this helps!

Regards,

Matt

0 Helpful
Customers Also Viewed These Support Documents