2-52
Catalyst 6500 Series Switch SSL Services Module Command Reference
OL-9105-01
Chapter2 Commands for the Catalyst 6500 Series SSL Services Module
service
service
To enter the proxy-service configuration submode, use the service command.
service ssl-proxy-name [client]
Syntax Description
Defaults Server NAT is enabled, and client NAT is disabled.
Command Modes Context subcommand mode
Command History
Usage Guidelines You cannot use the same service_name for both the server proxy service and the client proxy service.
In proxy-service configuration submode, you can configure the virtual IP address and port that is
associated with the proxy service and the associated target IP address and port. You can also define TCP
and SSL policies for both the client side (beginning with the virtual keyword) and the server side of the
proxy (beginning with the server keyword).
In client proxy-service configuration submode, you specify that the proxy service accept clear-text
traffic, encrypt it into SSL traffic, and forward it to the back-end SSL server.
ssl-proxy-name SSL proxy name.
client (Optional) Allows you to configure the SSL-client proxy services. See the
service client command.
Release Modification
Cisco IOS Release
12.1(13)E and
SSL Services Module
Release 1.1(1)
Support for this command was introduced on the Catalyst 6500 series
switches.
SSL Services Module
Release 2.1(1)
This command was changed to add the following submode commands:
• authenticate
• policy urlrewrite policy-name
• trusted-ca ca-pool-name
• sslv2—See the server ipaddr subcommand.
SSL Services Module
Release 3.1(1)
The service command (entered in context subcommand mode) replaces
the ssl-proxy service command (entered in global subcommand mode).
This command was changed to add the following submode commands:
• policy health-probe tcp policy-name
• policy http-header policy-name
