Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ACE SSL termination

Hi,

Just wondering Is ACE capable of encrypting automatically for return packets when it does SSL offloading. Means we are offloading SSL on ACE, When the ACE sends back the response to Client will it automatically encrypts? if yes please explain how.

Thanks

syaksha

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

ACE SSL termination

Hi Syaksha,

Yes ACE is capable of doing the encryption on the return traffic back to the client , during SSL offload if the ace does not encrypt the traffic back to the client , the connection will never get established since the client is expecting the return traffic to be on a secure channel.

SSL offload or termination refers to the ace deployment mode where in ACE will ace like a SSL proxy server and all the connections between the client and the ace are always encrypted and the connections between ace to your server will be in clear text.

Ace will use the same certificates to encrypt data back which it would have used to do SSL termination

A good document on ACE SSL can be found here

http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A1/configuration/ssl/guide/overview.html#wp1011355

Regards

Abijith

1 REPLY
New Member

ACE SSL termination

Hi Syaksha,

Yes ACE is capable of doing the encryption on the return traffic back to the client , during SSL offload if the ace does not encrypt the traffic back to the client , the connection will never get established since the client is expecting the return traffic to be on a secure channel.

SSL offload or termination refers to the ace deployment mode where in ACE will ace like a SSL proxy server and all the connections between the client and the ace are always encrypted and the connections between ace to your server will be in clear text.

Ace will use the same certificates to encrypt data back which it would have used to do SSL termination

A good document on ACE SSL can be found here

http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A1/configuration/ssl/guide/overview.html#wp1011355

Regards

Abijith

259
Views
0
Helpful
1
Replies