- Silver, 250 points or more
I'm having a problem with configuring end-to-end SSL as documented in Section 5 of the ACE SSL guide.
Without the ssl-proxy definition it "works" in the sense that the response is HTTPS format from either of the real servers.
If I add
ssl-proxy server PSERVICE_SERVER into
policy-map multi-match LB-VIP
loadbalance vip inservice
loadbalance policy VIP-LB-CATHY-https
then it fails and a wireshark trace shows a Handshake Failure - but no helpful details.
What I'm trying to do is terminate and re-initiate the SSL traffic to the two real servers.
Am I missing something obvious? The configuration of my Test context is attached.