SSL Reference Manual

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series

PTCPIPFILTERKEY ................................................................................................ 73

ROUTINGMODE ..................................................................................................... 74

SERVCERT............................................................................................................... 74

SERVKEY ................................................................................................................ 75

SERVKEYPASS ....................................................................................................... 75

SLOWDOWN ........................................................................................................... 76

SOCKSHOST, SOCKSPORT, SOCKSUSER .......................................................... 76

SRCIPADDR, SRCIPPORT ..................................................................................... 77

SUBNET ................................................................................................................... 78

SSLCOMSECURITY................................................................................................ 78

TARGETINTERFACE ............................................................................................. 79

TARGETHOST ......................................................................................................... 79

TARGETHOSTFORCE ............................................................................................ 80

TARGETPORT ......................................................................................................... 80

TARGETPORTFORCE ............................................................................................ 81

TARGETSUBNET .................................................................................................... 81

TCPIPHOSTFILE ..................................................................................................... 82

TCPIPNODEFILE ..................................................................................................... 82

TCPIPRESOLVERNAME ........................................................................................ 83

TCPNODELAY ........................................................................................................ 83

TRUST ...................................................................................................................... 83

Advanced Configuration Topics .............................................................................................. 85

Multiple SSL Tunnels in a Single Process ................................................................ 85

Fault-tolerant Configuration ...................................................................................... 85

Load Balancing and Fault-Tolerance of EXPAND over SSL ................................... 85

Monitoring 89

Overview ................................................................................................................................. 89

Log and Audit Level Recommendations ................................................................................. 90

Customizing the Log and Audit Format .................................................................................. 90

Using SHOWLOG to View a Log File .................................................................................... 90

Viewing File Contents from OSS ............................................................................................ 93

Logfile/Auditfile Rollover ....................................................................................................... 93

SSLCOM Command Interface 95

Usage of SSLCOM: a Sample Session .................................................................................... 96

Supported Commands .............................................................................................................. 97

The CONNECTION Commands ............................................................................................. 98

CONNECTIONS ....................................................................................................... 98

CONNECTIONS, DETAIL ...................................................................................... 99

INFO CONNECTION ............................................................................................. 100

RENEGOTIATE CONNECTION .......................................................................... 100

SSLINFO Command ............................................................................................................. 101

RELOAD CERTIFICATES Command ................................................................................. 101

SSL Reference 103

Secure Sockets Layer ............................................................................................................. 103

SSL Features ............................................................................................................ 103

Further References................................................................................................... 103

Implementation Overview ..................................................................................................... 104

Cipher Suites ........................................................................................................... 104

Auditing ................................................................................................................... 104

X.509 Certificates .................................................................................................... 104

Configuring SSL for Production as SSL Server .................................................................... 105

HP NonStop SSL Reference Manual Contents • v