SSL Settings
It provides functionality to support SSL offloading based on configurations.
Overview
As many applications are running over HTTPS, for the WAF / ADC solution to inspect user payload, it is necessary to decrypt SSL/TLS traffic. The following settings allow users to configure SSL offloading based and optional re-encryption in Haltdos solution. The performance of SSL offloading will vary based on chosen model.
| Parameters | Accepted Values | Default |
|---|---|---|
| Enable SSL Offloading | Boolean | Disabled |
| SSL Certificate | Drop-Down | Blank |
| SSL Cipher Suites | Drop-Down | Intermediate |
| SSL Session Caching | Decimal | 10 |
| SSL Session Timeout | Decimal | 5 |
How to Use:
- Log into the Haltdos WAF Professional edition web UI console.
- Then go to Listeners > SSL Settings
- Configure Your Settings
- Click Save Changes.
Description
Enable SSL Offloading
This option specifies if the WAF should enable HTTPS traffic for the configured website.
SSL Certificate
This field allows us to Select or Upload an SSL Certificate for SSL Offloading in case of encrypted traffic. Users can select the SSL certificate from the drop-down or add a new certificate by clicking the ADD button which will redirect to the SSL Certificates page
SSL Ciphers
It is a set of algorithms or a set of instructions/steps that helps to establish a secure connection between two entities — usually the client (a user's browser) and the web-server they're connecting to (your website). Users can select respective ciphers from the drop-down.
SSL Ciphers Suites
In order to secure or make SSL compatible with specific web browsers. Users can select from the drop-down i.e. Modern(Very Secure), Intermediate (Recommended), Old(Backward Compatibility), Custom, etc.
SSL Session Caching
This option allows users to specify the number of SSL session cache for HTTPS requests on the listener.
SSL Session Timeout
This option allows users to specify the SSL session timeout in minutes for every HTTPS request on the listener.