Step 1: Identify SSL traffic that needs to be optimized. To check if traffic is being optimized, you can do so by logging into Silverpeak and going to Monitoring > Current Flows
Step 2: Once on "Current Flows" look for "https" traffic under application
Step 3: If "https" traffic has an "alert" then it might be because it doesn't a proper certificate installed
Step 4: (Note: Host Certificate Installation: PEM format). Most APACHE servers and load balancers should already be in this format. Now just export the certificate from your web server/load balancer with its matching key to a directory you have access to
Step 5: Once you have the certificates in a known directory. Open an sftp client to move the certificate and key into the Silverpeak appliance (just drag and drop). The cert and key has to go into the following Silverpeak directory "/var/tmp/" (Note: For this example I am using Filezilla as my sftp client)
Step 6: Once the cert and key have been imported into the Silverpeak appliance, log into Silverpeak via CLI (Note: You can use Putty to log into Silverpeaks CLI)
Step 7: Silverpeaks default username/password is admin/admin
Step 8: Go into "enable" mode. Enter "enable" and hit enter.
Step 9: Enter "configure terminal" and hit enter
Step 10: Install the cert and key that you imported to Silverpeak. Use the following command to install cert and key "ssl host-cerificate install cert-file /var/tmp/yourcertnkey.com.crt key-file /var/tmp/yourcertnkey.com.key" (Note: yourcertnkey.com is just a place holder for your actual cert and key that you have import to Silverpeak)
Step 11: To check if your cert and key has been imported run the following command "ssl host-certificate list"
Output should look something like this:
Step 12. Now if you are running on IPsec Tunnel mode you should see SSL traffic being optimized. Go to "Current Flows" look for "https" traffic under application and status should be "optimized"
Step 13. How to check what mode your tunnel is running on? to check go to Con
Such a great information are there in your post and this will guide more people.
ReplyDeleteJAVA Training in Chennai
JAVA Training in Velachery
Software testing training in chennai
Android Training in Chennai
Selenium Training in Chennai
Hadoop Training in Chennai
JAVA Training in Chennai
Java Training in Tnagar
The article is so informative. This is more helpful. Thanks for sharing.
ReplyDeleteLearn best software testing online certification course class in chennai with placement
Best selenium testing online course training in chennai
Best online software testing training course institute in chennai with placement
Magento 2 Developer course training institute in chennai