I have a problem with a CSS11501 with the SSL module installed. The SSL module doesn't accept the traffic on port 443 and it goes directly to the server. The server has a certificate installed and that's how I know that it doesn't work. I access the server on port 80 and 443 without any problem. I've seen a similar post on this issue without a solution and the questions were:
Does the browser support the certificates? I'm using IE 6.0 SP1, I honestly don't know if it's supported but I've enabled all RSA ciphers.
Are there any hits on the stats. None, the only counter that changes is the HASH on the Crypto counter.
The current configuration causes port 443 traffic to go to the SSL module and then the SSL module sends it to 10.60.0.67. This is also listed as a service on the CSS. There is nothing in the configuration in your note that would cause the CSS to send traffic to port 443 on the server. Is the 10.60.2.1 configured on any other device, like a firewall translation, for instance?
Are you saying that "show summary" doesn't show any hits on either content rule?
What URL do you enter on the browser?
What URL do you see on the browser after the attempt has concluded?
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...