Hp e-Commerce Server Accelerator sa7120 Manuel d'utilisateur Page 55
- Page / 192
- Table des matières
- DEPANNAGE
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
C H A P T E R 4Scenario 5—Configuring a Firewall
45
• First, because the SA7120 performs all of the SSL processing,
the web server process must be configured to expect only
standard HTTP (unencrypted) connections, even for sensitive
content.
• Second, the web server process must be configured to listen for
these HTTP connections on a port other than the standard
HTTPS port (443). In this scenario we configure the port 443
service to listen on port 81.
SA7120 Configuration
The SA7120 must be configured to intercept HTTPS connections on
port 443 and forward them to the server. In the preceding section, we
configured the server to provide access to sensitive data through port
81, so that should be the clear text port when creating a server
assignment (or “map”) on the SA7120. Perform the following steps
to create the server assignment:
1. Perform the installation as described in Chapter 2 and access the
command line prompt.
2. Acquire the appropriate keys and certificates following the
procedure in the “Keys and Certificates” section in Chapter 3.
3. Create a mapping for the server. Use the create map command
to specify the server IP address, ports, and keyID.
HP SA7120> create map
Server IP (0.0.0.0): 10.1.1.30
SSL (network) port [443]: <Enter>
Cleartext (server) port [80]: 81
KeyID to use for mapping: serv1
Port Number Connection Type Content Served
80 HTTP Non-sensitive
81 HTTP Sensitive
- Publication Number 2
- Disclaimer 2
- Warranty 2
- Table of Contents 3
- Chapter 4: Scenarios 5
- Chapter 5: Command Reference 5
- Chapter 6: Remote Management 6
- Introduction 11
- Who Should Use this Book 12
- Before You Begin 12
- How to Use this Book 12
- Installation and Initial 15
- Configuration 15
- Installation 16
- Free-Standing 17
- Network 17
- Connections 17
- Status Check 18
- Terminal 19
- Connection 19
- Theory of Operation 21
- Multiple Servers 22
- Processing 24
- Hub/Router/Switch 25
- Keys and Certificates 26
- HP SA7120> create key 27
- New keyID [001]: mywebserver 27
- Exporting a 30
- Key/Certificate 30
- Stronghold* 31
- Creating a new 32
- Global Site 33
- Certificates 33
- Client Authentication 37
- Creating a 38
- Client CA 38
- Certificate 38
- OpenSSL* 38
- SSL Processing 39
- Automapping 40
- Deleting automapping entries 40
- Blocking 41
- Subnet, Specific Port 42
- All IPs, Specific Port 42
- Delete a Block 43
- Scenarios 45
- Scenario 1—Single Server 46
- Scenario 2—Multiple Servers 48
- Procedure for 51
- Scenario 3 51
- Scenario 4 53
- Firewall 54
- HP SA7120> create map 55
- Firewall Configuration 56
- Command 57
- Reference 57
- HP SA7100> 58
- Abbreviation 59
- Input Editing Commands 60
- Cutting Text 61
- Command Summary 62
- Command Command Options 64
- Command Reference 67
- HP SA7120> list keys 69
- HP SA7120> show redirect 1 72
- HP SA7120> set defcert 75
- HP SA7120> show defcert 75
- HP SA7120> show kstrength 76
- HP SA7120> show client_tmo 76
- Port Mapping 77
- Operational 80
- Example: 88
- HP SA7120> show rsc_window 90
- show config default 93
- HP SA7120> export config 95
- HP SA7120> import config 95
- Administration 97
- HP SA7120> show info 98
- HP SA7120> set date 98
- HP SA7120> show serial 101
- HP SA7120> 101
- HP SA7120> exit 101
- HP SA7120> export log a 101
- Command Description 102
- Management 103
- Limitations 104
- Commands 104
- Remote Telnet Sessions 106
- Console 107
- Changing the 107
- Telnet Port 107
- Remote SSH Sessions 108
- Console, SSH 109
- SSH Port 110
- Disabling SSH 110
- Standards 111
- Compliance 111
- HP MIB Tree 111
- Enterprise 112
- Private MIB 112
- C H A P T E R 6SNMP 113
- Trap Summary 116
- Enabling 117
- Specifying SNMP Information 118
- Community String 119
- Trap Community String 119
- Alarms and 121
- Monitoring 121
- Alarm Types 123
- Alarm Modifiers and Messages 124
- Extended Data 124
- RSC Alarm CLI Commands 124
- Utilization 125
- Threshold 125
- OVL: Overload 126
- NLS: Network 127
- Link Status 127
- Alarm Logging 128
- Example: status command 129
- Monitor report format: 132
- Examples: 133
- Software Updates 135
- Upgrading 136
- Troubleshooting 139
- HP SA7120> set client_tmo 140
- <n> 140
- Item Symptom Probable 142
- Front Panel 143
- Buttons and Switches 144
- Front Panel LEDs 144
- (See Appendix B, Failure/ 145
- Bypass Modes) 145
- Connectors 146
- Failure/Bypass 147
- Bypass Button 148
- Supported Ciphers 151
- SSL Version Level 152
- Regulatory 155
- Information 155
- VCCI Statement 156
- CE Compliance Statement 157
- CISPR 22 Statement 158
- VCCI Class A (Japan) 158
- Australia 158
- AVERTISSEMENT 159
- AVVERTENZA 160
- ADVERTENCIAS 161
- Wichtige Sicherheitshinweise 162
- Software License 165
- Agreement 165
- A P P E N D I X E 167
- MOZILLA 168
- LICENSE 168
- Version 1.1 168
- Support Services 181
- • An HP-authorized reseller 182
- Latin America 183
- Countries 184
- Glossary 185
Produits connexes et manuels pour Matériel informatique Hp e-Commerce Server Accelerator sa7120
(124 pages)
(93 pages)© 2020, manymanuals.fr. Tous droits réservés | 0.050 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels