(Supporting ADX v03.1.00) Owner's manual

ManualsBrandsBrocade ManualsComputer AccessoriesVirtual ADX Graphical User Interface Guide

151

152

153

154

155

156

157

158

159

160

Table Of Contents

Contents
Preface
- Document conventions
- Brocade resources
- Contacting Brocade Technical Support
- Document feedback
Introduction to the Brocade Virtual ADX Web Interface
- System requirements
- Starting the Brocade Virtual ADX web interface
Navigating the Web Interface
- Web interface overview
- Layout
- Navigation
Navigating the Dashboard
- Dashboard overview
  - Dashboard pod controls
- System view
- Traffic view
Configuration Overview
- Navigating the configuration tab
- Saving the configuration
System Settings
- General settings
  - Changing the system limits
  - Viewing and saving the configuration
- High Availability
  - Configuring the Brocade Virtual ADX in Hot-Standby HA
- Config Sync
  - Config Sync Summary tab
  - Config Sync Settings tab
- Templates
  - Executing a Config Template
  - Viewing the Raw XML and Tree Structure of a template
- User management
- Device management
Network Settings
- Configuring network interfaces and IP addresses
  - Editing an IP interface
  - Configuring IP addresses for the interface
- Configuring static routes
- Configuring VLANs
Traffic Settings
- Global traffic settings
- Virtual servers
- Real servers
- Server groups
  - Binding a server group
- Source NAT IPs
- Health checks
- Content switching
- OpenScript
GSLB Settings
- GSLB Site
  - Configuring GSLB Advanced Settings
Security Settings
- SSL overview
- SSL private keys
  - Uploading private keys
- SSL certificates
  - Generating Certificate Signing Requests
  - Generating self-signed certificates
- SSL profiles
  - Creating SSL profiles
  - Managing the TCP profile
- SSL profile bindings
  - Binding the profiles
- SSL certificate revocation lists
  - Creating certificate revocation lists
- Access Control Lists
- SYN-Proxy settings
- SYN-Proxy server tasks
- RADIUS controls
- RADIUS servers
  - Creating and editing a RADIUS server
- TACACS controls
- TACACS Servers
  - Adding or editing a TACACS server
Monitoring Overview
- Navigating the monitor tab
Viewing System Information
- System summary
- System logs
Viewing Network Status
- Interface statistics
- IP statistics
- IPv6 Neighbor
- Routes
- ARP cache statistics
- MAC statistics
Viewing Traffic Statistics
- Global traffic
- Virtual servers
- Real servers
  - Real server statistics
  - Real server ports
- Content switching
- OpenScript
  - Detailed OpenScript statistics
- Session information
  - Session summary
  - Filtering the session table
Viewing Security Statistics
- DoS protection
  - Displaying SYN attack details
  - Displaying other DoS attack details
- SSL statistics
Maintenance Overview
- Navigating the maintain tab
Managing Software Images
- Uploading the software
Restarting the System
- System restart
License Management
- License
Packet Capture
- Packet capture
  - Edit Filter
  - Apply packet capture
Accessing the CLI
- CLI access
Retrieving System Information for Technical Support
- Technical support
Troubleshooting
- Unable to open web interface
- Web interface does not reflect changes based on the latest image
- RSL error (#2032 Stream Error) when launching the web interface
Config Template XML Schema
- Overview
- XML schema element reference
Managing Config Templates through the CLI
- Overview
- Copying or exporting a template file
- Creating a ready-to-use template from an existing template
- Deleting a template
- Validating a template
- Executing a template
- Displaying template information

144 Brocade Virtual ADX Graphical User Interface Guide

53-1003242-01

SSL profiles

• Chaining: Select the Enable check box to configure the device to send the entire certificate

chain including the root CA certificate and any intermediate CA certificates when

presenting the certificate to the client.

• SSL 2.0: Select the Enable check box to enable SSL 2.0. By default, the device supports

SSL 3.0.

• Select the cipher suites you want in the Available Ciphers list and click Add to add to the

Selected Ciphers list, to control the security strength of the SSL handshakes.

5. Click Certificates tab to specify additional options under the SSL profile.

The Certificates page is displayed, as shown in Figure 116.

FIGURE 116 Certificates configuration

6. Provide the following information:

• Verify Client Certificate: Select the Enable check box to configure the device to verify the

signed certificates of the connecting client. By default, client certificate verification is

disabled. After enabling the certificate verification, select one of the following options:

• Per New Connection: To request a client certificate for every new SSL connection.

• Per SSL Handshake: To request a client certificate for every SSL handshake.

• Certificate Optional: To indicate the client certificate is optional.

• Require Certificate for Connection: To indicate the requirement of certificate for the

new connection.

• Disable Certificate checking: Select the check box to configure the device to not check for

the SSL certificate during client connection. This is applicable only in SSL proxy mode.

• Allow self-signed certificates: Select the check box to enable the Brocade Virtual ADX to

allow self-signed certificates. By default, the Brocade Virtual ADX does not accept

certificates that have been issued by a CA that is not trusted and only accepts certificates

which have been signed by a CA that is configured under the SSL profile.

• Chain depth: Specify the maximum certificate chain depth verified. The accepted values

are between 4 and 10. The default value is 4.

• CA Certificates: Select the CA certificates from the Available list and click Add to move

them to the Selected list, which can be used by the device in SSL proxy mode. In SSL proxy

mode, the device acts as a client to the real server and requires a valid client certificate to

connect to the real server.