Manualshelf

User Guide

ManualsBrandsMacromedia ManualsOtherBREEZE 5
81828384858687888990
82 Chapter 4: Post-installation
Implementing SSL-enabled Breeze with an Accelerator
To implement Breeze with an SSL-enabled accelerator, the following resources are required:
Two external IP addresses and one internal IP address.
One NIC card.
Breeze Server is configured to listen on port 443 externally and forwards unencrypted to the
Breeze server on port 443.
Breeze Server is also configured to forward any port 80 traffic coming from Breeze Server, and
loop this traffic back to Breeze Server on port 80.
The FCS IP address is configured to listen on port 443 externally and forward unencrypted to
the Breeze server on port 1935.
The FCS IP address is also configured to forward any port 1935 traffic coming from the Breeze
server back to the Breeze server on port 1935.
Modifying the custom.ini file for SSL
You configure Breeze for an SSL accelerator by modifying the installed Breeze Server
configuration. The following example creates an SSL-only configuration for Breeze. Only port
443 is opened for Breeze Server or FCS traffic. No FCS traffic is tunneled over port 80, and no
external HTTP traffic goes over port 80.
To modify the custom.ini file for SSL:
1.
Edit the following variables in the custom.ini configuration file. Substitute your local server
names for the variables ADMIN_HOST, ADMIN_PROTOCOL, SSL_ONLY, and
USE_HOST_MAPPINGS to enable SSL.
# breeze external DNS, which is the SSL Certificate A.
Certificate-ns.macromedia.com
# SSL Configuration Begins
ADMIN_PROTOCOL=https://
SSL_ONLY=yes
DEFAULT_FCS_HOSTPORT=:1935
# ps-breezewin1 is the Breeze server name; ps-breezewin4.macromedia.com is
Meeting’s External DNS AND the SSL Certificate B.
USE_HOST_MAPPINGS=yes
shost.ps-breezewin1=ps-breezewin4.macromedia.com
host.ps-breezewin1=ps-breezewin4.macromedia.com
2.
. Bind one IP address to Breeze Server.
a
Open the c:\breeze\appserv\conf\SERVER-INF\jrun.xml file.
b
Change the value of bindAddress from the asterisk (*) to the IP address of Breeze Server.
<!-- This Service launches the application framework --!>
<!-- =============================================== --!>
<service class="com.macromedia.airspeed.main.AirspeedService"
name="AirspeedService">
<attribute name="activeHandlerThreads">350</attribute>
<attribute name="backlog">500</attribute>
<attribute name="interface">*</attribute>
<attribute name="bindAddress">10.1.204.40</attribute>