Manualshelf

HP VPN Firewall Appliances Network Management Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1121112211231124112511261127112811291130
1099
Usage guidelines
It is a complicated process to use the SSL handshake protocol to negotiate session parameters and
establish sessions. To simplify the process, SSL allows reusing negotiated session parameters to establish
sessions. This feature requires that the SSL server maintain information about existing sessions.
The number of cached sessions and the session information caching time are limited:
If the number of sessions in the cache reaches the maximum, SSL rejects to cache new sessions.
If a session has been cached for a period equal to the caching timeout time, SSL removes the
information of the session.
Examples
# Set the caching timeout time to 4000 seconds and the maximum number of cached sessions to 600.
<Sysname> system-view
[Sysname] ssl server-policy policy1
[Sysname-ssl-server-policy-policy1] session timeout 4000 cachesize 600
Related commands
display ssl server-policy
ssl client-policy
Use ssl client-policy to create an SSL policy and enter its view.
Use undo ssl client-policy to delete a specified SSL client policy or all SSL client policies.
Syntax
ssl client-policy policy-name
undo ssl client-policy { policy-name | all }
Views
System view
Default command level
2: System level
Parameters
policy-name: SSL client policy name, a case-insensitive string of 1 to 16 characters. It cannot be "a", "al",
or "all".
all: Specifies all SSL client policies.
Examples
# Create SSL client policy policy1 and enter its view.
<Sysname> system-view
[Sysname] ssl client-policy policy1
[Sysname-ssl-client-policy-policy1]
Related commands
display ssl client-policy