Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,We have a number of SSL servers defined in a ssl-proxy-list on a CSS 11501 running 7.50.1.03. The ssl-proxy list is used in a HTTPS termination service.When we want to add another SSL server to the ssl-proxy-list, I have to suspend the list, add t...
Hi, I have tried using the "clear ssl file" command to remove an old RSA key pair file as described in a previous thread. However, this requires me to "enter the password used to 3DES encode the file". Unfortunately, I do not have the password any mo...
Hi,We have three Cisco CSS 11501 and have some intermittent problems with timeouts for a web-based application. After reading threads in this forum I have concluded that increasing the flow-timeout-multiplier could solve the issue.We are terminating...
Hi,We have two Cisco CE 7305 and are not able to redirect URLs based on source IP addressesWe would like prevent users in general from accessing the Internet, while permitting specific IP subnets to access the Internet.The users that are not allowed...
Hi,We are evaluating a CSS 11500 and try to configure url path rewrite and NAT, but we have some problems.What we would like to do is the following:http://www.example.com/path1 -> http://host1:80http://www.example.com/path2 -> http://host1:8080http:/...
What is the guideline for setting the inactivity timeout (server and virtual) for the SSL module?Should it typically be set higher than the flow timeout, since it is by default (240 seconds)?Thanks again for your help!Regards,Harald
Hi,I have tried using the "clear ssl file" command to remove an old RSA key pair file. However, this requires me to "enter the password used to 3DES encode the file". Unfortunately, I do not have the password any more. Is there a way to remove the ss...
I have configured the CSS as in your example, but unfortunately it does not work for me. I get the following translationhttp://www.example.com/path1 -> http://host1/path1:80http://www.example.com/path2 -> http://host1/path2:8080instead of the one I w...
Thanks for your answer Amit!CDP is already enable on our internal switches and routers. When we have a duplex/speed problem between a switch and a router, we do get the CDP error messages as you describe.However, the interfaces that are connected to ...
