Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
606
Views
0
Helpful
1
Replies

Port 443 AND 80 traffic and SSL offloading

TimRTurner
Level 1
Level 1

‎12-02-2011 06:18 AM

Users to a site (thissite.here.com, for example) have used both http://thissite.here.com and https://thissite.here.com for reasons lost in history...

The (IIS) site has a certificate but its use is not mandated.

In a new environment to whichi we are migrating, we have SSL offloading. We still want one DNS entry for thissite.here.com, and this ought to be an IP addresses held by the SSL module - but this only works if (paradoxically), that SLL module can also be sent not to mandate the use of SSL.

Does this make sense? Is this possible?

Tim T.

Labels:
0 Helpful
1 Reply 1

Daniel Arrondo Ostiz
Cisco Employee
Cisco Employee

‎12-03-2011 12:03 AM

Hi Tim,

In most environments, you don't use the SSL module alone, but rather along with a load balancer. In those cases, you can configure the load-balancer with the same IP address for two different ports and then send the SSL traffic to the SSLM and the rest to the servers directly.

If you are using a standalone SSLM, then, I'm afraid this is not possible.

By the way, I'm surprised to hear you are doing a new setup with the SSLM, as it's almost obsolete (see

http://www.cisco.com/en/US/prod/collateral/modules/ps2706/eol_c51_534811.html)

Regards

Daniel

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card