Security Guide (Supporting ADX v03.1.00) Instruction Manual
142 Brocade Virtual ADX Security Guide
53-1003250-01
Configuration examples for SSL Termination Mode
6
Other protocols supported for SSL
In addition to HTTPS, Brocade Virtual ADX SSL supports the following protocols:
• LDAPS
• POP3S
• IMAPS
The following example provides a configuration of SSL support for these protocols.
Virtual ADX(config)#server real rs1
Virtual ADX(config-rs-rs1)#port pop3
Virtual ADX(config-rs-rs1)#port imap4
Virtual ADX(config-rs-rs1)#port ldap
Virtual ADX(config-rs-rs1)#exit
Virtual ADX(config)#
Virtual ADX(config)#server real rs2
Virtual ADX(config-rs-rs2)#port pop3
Virtual ADX(config-rs-rs2)#port imap4
Virtual ADX(config-rs-rs2)#port ldap
Virtual ADX(config-rs-rs2)#exit
Virtual ADX(config)#
Virtual ADX(config)#server virtual-name-or-ip vip1
Virtual ADX(config-vs-vip1)#port pop3s
Virtual ADX(config-vs-vip1)#port pop3s ssl-terminate sslprof
Virtual ADX(config-vs-vip1)#bind pop3s rs1 pop3 rs2 pop3
Virtual ADX(config-vs-vip1)#exit
Virtual ADX(config)#
Virtual ADX(config)#server virtual-name-or-ip vip1
Virtual ADX(config-vs-vip1)#port imaps
Virtual ADX(config-vs-vip1)#port imaps ssl-terminate sslprof
Virtual ADX(config-vs-vip1)#bind imaps rs1 imap4 rs2 imap4
Virtual ADX(config-vs-vip1)#
Virtual ADX(config-vs-vip1)#port ldaps
Virtual ADX(config-vs-vip1)#port ldaps ssl-terminate sslprof
Virtual ADX(config-vs-vip1)#bind ldaps rs1 ldap rs2 ldap
Virtual ADX(config-vs-vip1)#exit
Virtual ADX(config)#
Configuring the system max values
This section describes how to configure the following system max values on a Brocade Virtual ADX:
• SSLv2 connection rate
• Number of SSL profiles
• Maximum number of SSL and SSLv2 concurrent connections
• Maximum number of SSL certificates and keys
• Maximum size of an SSL certificate
NOTE
Setting all of the system-max values to their maximum value is not advisable as it consumes a large
amount of system memory. Please set these values only if necessary.