Kris Lindgren created TS-1500:
---------------------------------
Summary: ssl_multicert.config specify sslcert per port
Key: TS-1500
URL: https://issues.apache.org/jira/browse/TS-1500
Project: Traffic Server
Issue Type: Improvement
Components: SSL
Affects Versions: 3.2.0
Reporter: Kris Lindgren
Trying to configure ssl termination on traffic server on a per-port basis(would
really like to have per ip/port). An example of what I am wanting to do is:
Inet -> LB ( 1.1.1.1:443 ) -> ATS ( 10.1.0.3:443 ) -> web (10.0.0.2:80 )
Inet -> LB ( 1.1.1.2:443 ) -> ATS ( 10.1.0.3:444 ) -> web (10.0.0.3:80 )
Inet -> LB ( 1.1.1.3:443 ) -> ATS ( 10.1.0.3:445 ) -> web (10.0.0.4:80 )
Where in ATS I would then have a config like:
dest_ip=10.1.0.3:443 ssl_cert_name=one.crt ssl_key_name=one.key
dest_ip=10.1.0.3:444 ssl_cert_name=two.crt ssl_key_name=two.key
dest_ip=10.1.0.3:445 ssl_cert_name=three.crt ssl_key_name=three.key
This way a unique IP is terminated on the LB and the LB just balances a
different port on ATS, which handles the ssl termination.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
