Cisco Cisco Content Switching Module with SSL Notas de publicación
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
12
Release Notes for Catalyst 6500 Series Switch Content Switching Module with SSL Software Release 2.1(14)
OL-7028-14
New and Changed Information
New and Changed Information
•
CSCsv78324
A new environmental variable CLIENT_NAT_NO_PAT is introduced to allow the disabling of port
address translation (PAT) when client network address translation (NAT) is enabled. A new counter
is added in the dump of LB Statistics to indicate that PAT was necessary due to a port collision.
address translation (PAT) when client network address translation (NAT) is enabled. A new counter
is added in the dump of LB Statistics to indicate that PAT was necessary due to a port collision.
In normal client NAT operation, a client packet’s source IP address is translated (NAT) and the
source port number is translated (PAT). When the environmental variable CLIENT_NAT_NO_PAT
is set, the CSM retains the original source port number when possible. If the original source port
number is already in use by another connection, the CSM-S must perform PAT to avoid port
collision.
source port number is translated (PAT). When the environmental variable CLIENT_NAT_NO_PAT
is set, the CSM retains the original source port number when possible. If the original source port
number is already in use by another connection, the CSM-S must perform PAT to avoid port
collision.
Certificate expiration warning
TCP Termination
RFC 1323
Connection aging
Connection rate
NAT
1
/PAT
2
Client and server
Redundancy
No SSL access in standby state
For redundancy, use either two CSMs or two CSM-S not a mix of CSM and CSM-S for supported
redundancy configuration
redundancy configuration
High Availability
Failure detection (SLB health monitoring schemes)
Module-level redundancy (stateless)
Serviceability
Password recovery
Statistics and Accounting
Total SSL connections attempt per proxy service
Total SSL connections successfully established per proxy service
Total SSL connections failed per proxy service
Total SSL alert errors per proxy service
Total SSL resumed sessions per proxy service
Total encrypted/decrypted packets/bytes per proxy service
Statistics displayed at 1 second, 1 minute, and 5 minutes traffic rate for CPU utilization and
SSL-specific counters
SSL-specific counters
1.
NAT = Network Address Translation
2.
PAT = Port Address Translation
Table 5
CSM-S Feature Set Description (continued)
Features