B-29
Cisco 11000 Series Secure Content Accelerator Configuration Guide
78-13124-06
Appendix B Deployment Examples
Use with the CSS
### Telnet ###
telnet enable
### Web Management ###
web-mgmt port 80
web-mgmt enable
### SNMP Subsystem ###
snmp enable
### SSL Subsystem ###
ssl
server
myserver create
ip address 10.176.1.20
localport 443
remoteport 81
key default-512
cert default-512
secpolicy default
sslv2 enable
sslv3 enable
tlsv1 enable
session-cache size 20480
session-cache timeout 300
session-cache enable
no clientauth enable
clientauth verifydepth 1
clientauth error cert-other-error fail
clientauth error cert-not-provided fail
clientauth error cert-has-expired fail
clientauth error cert-not-yet-valid fail
clientauth error cert-has-invalid-ca fail
clientauth error cert-has-signature-failure fail
clientauth error cert-revoked fail
sharedcipher error failhtml
ephemeral error failhtml
no httpheader client-cert
no httpheader server-cert
no httpheader session
no httpheader pre-filter
httpheader prefix “SSL”
ephrsa
keepalive frequency 5