Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
285
Views
0
Helpful
1
Replies

SSL Termination

joeduea67
Level 1
Level 1

‎05-21-2008 04:33 AM - edited ‎03-11-2019 05:47 AM

I am wondering if one can terminate a SSL tunnel on an ASA in order to install the certificate for a web farm located inside the network? We have a two servers on the inside with one designated as failover and in the instance that I need to failover to the secondary machine I would just rather change the nat statement so the customer does not see a difference when they make the request. This of course would require that the ssl tunnel be terminated at the ASA so that the certificate will still be valid.

I know that one can set this kind of scenario up on a Microsoft ISA server but I do not really want to put something like that in place here.

Thanks,

Joe

Labels:
0 Helpful
1 Reply 1

jphilope
Level 3
Level 3

‎05-21-2008 07:14 AM

Ever thought os using a Content Switch W/SSL? You can terminate to a VIP that is the SSL termination point and then go back to your two servers. Similar in function to having two (or more) Web Servers with the SSL termination done on the front side (not on the servers themselves).

Do a search for 11500's here and look at SSL configurations.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card