Configure SSL bridging 编辑

An SSL bridge configured on the Citrix ADC appliance enables the appliance to bridge all secure traffic between the SSL client and the SSL server. The appliance does not perform offloading, encryption or decryption, or accelerating the bridged traffic. Only load balancing is done by the appliance. The SSL server must handle all SSL-related processing. Features such as content switching and cache redirection do not work, because the traffic passing through the appliance is encrypted.

Because the appliance does not carry out any SSL processing in an SSL bridging setup, there is no need for SSL certificates.

Citrix recommends that you use this configuration only if an acceleration unit (for example, a PCI-based SSL accelerator card) is installed in the web server to handle the SSL processing overhead.

Before you configure SSL bridging, first enable SSL and load balancing on the appliance. Then, create SSL_Bridge services and bind them to an SSL_Bridge virtual server. Configure the load balancing feature to maintain server persistency for secure requests.

In the following example, after enabling SSL and load balancing, create two servers, s1 and s2. Create two SSL_Bridge services, sc1 and src2. Create an SSL_Bridge virtual server and bind the SSL_Bridge services to the virtual server to complete the configuration. At the command line, type:

enable ns feature SSL LB

add server s1 192.0.2.100

add server s2 192.0.2.200

add service src1 s1 SSL_BRIDGE 443

add service src2 s2 SSL_BRIDGE 443

add lb vserver ssl_bridge_vip SSL_BRIDGE 203.0.113.10 443

bind lb vserver ssl_bridge_vip src1

bind lb vserver ssl_bridge_vip src2
<!--NeedCopy-->

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。
列表为空,暂无数据

词条统计

浏览:61 次

字数:1747

最后编辑:7 年前

编辑次数:0 次

    我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
    原文