User's Manual

ManualsBrandsCisco Systems ManualsSwitchCisco Systems 6500

101

102

103

104

105

106

107

108

109

110

2-104

Catalyst 6500 Series Switch WebVPN Module Command Reference—Release 1.1

OL-7310-01

Chapter 2 Commands for the Catalyst 6500 Series Switch WebVPN Module

webvpn policy ssl

To enter the SSL-policy configuration submode, use the webvpn policy ssl command. In the SSL-policy

configuration submode, you can define the SSL policy for one or more SSL-proxy services.

webvpn policy ssl ssl-policy-name

Syntax Description

Defaults The defaults are as follows:

• cipher is all.

• close-protocol is enabled.

• session-caching is enabled.

• version is all.

• session-cache size size is 262143 entries.

• timeout session timeout is 0 seconds.

• timeout handshake timeout is 0 seconds.

• tls-rollback is disabled.

Command Modes Global configuration

Command History

Usage Guidelines Each SSL-policy configuration submode command is entered on its own line.

Table 2-10 lists the commands available in SSL-policy configuration submode.

ssl-policy-name SSL policy name.

Release Modification

WebVPN Module

Release 1.1

Support for this command was introduced on the Catalyst 6500 series

switches.

Table 2-10 SSL-Policy Conﬁguration Submode Command Descriptions

cipher-suite

{RSA_WITH_3DES_EDE_CBC_SHA |

RSA_WITH_DES_CBC_SHA |

RSA_WITH_RC4_128_MD5 |

RSA_WITH_RC4_128_SHA | all}

Allows you to configure a list of cipher-suites acceptable to the proxy-server.

[no] close-protocol enable Allows you to configure the SSL close-protocol behavior. Use the no form

of this command to disable close protocol.

default {cipher | close-protocol |

session-cache | version}

Sets a command to its default settings.