Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
701
Views
5
Helpful
1
Replies

CSS 11503 SSL-Proxy-List changes?

jcmattos1
Level 1
Level 1

‎09-06-2006 01:30 PM

Hello, we have 2 CSS 11503 v8.10 w/CSS5-SSL-K9 box2box. We are only running one SSL module in each chassis. I noticed that when I want to make a change or add additional vips to the ssl-proxy-list I would have to take it oos. Is there a way to make a change to it without disrupting production and without purchasing an additional SSL Module? Thoughts?

!*********************** SSL PROXY LIST ***********************

ssl-proxy-list SSL1-SCA2

ssl-server 1

ssl-server 1 vip address 10.69.2.35

ssl-server 1 cipher rsa-with-rc4-128-md5 10.69.2.35 81

ssl-server 1 rsacert HProdCert

ssl-server 1 rsakey HProdKey

ssl-server 2

ssl-server 2 vip address 10.69.3.45

ssl-server 2 cipher rsa-with-rc4-128-md5 10.69.3.45 81

ssl-server 2 rsacert HxUATCert

ssl-server 2 rsakey HxUATKey

ssl-server 3

ssl-server 3 vip address 10.69.2.42

ssl-server 3 cipher rsa-with-rc4-128-md5 10.69.2.42 81

ssl-server 3 rsacert UxUATCert

ssl-server 3 rsakey UxUATKey

active

!************************** SERVICE **************************

service SSL1-SCA2

type ssl-accel

slot 3

keepalive type none

add ssl-proxy-list SSL1-SCA2

active

Labels:
0 Helpful
1 Reply 1

drex_72
Level 1
Level 1

‎09-07-2006 06:24 AM

As far as I know, no. There is no way to make a change to an ssl-proxy-list without first taking it offline.

I do remember in a previous version you would even have to disable the service that was attached to the SSL-PROXY-LIST if you wanted to make a change. They've fixed that however.

Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card