Manual
Table Of Contents
- Chapter 1 Accessing the Web User Interface
- Chapter 2 Cellular Connections
- Chapter 3 Web User Interface
- 3.1 Web User Interface Introduction
- 3.2 Status Tab
- 3.3 Admin Tab
- 3.4 Network Tab
- 3.5 Services Tab
- 3.6 Automation Tab
- 3.7 Advanced Tab
- Chapter 4 Red Lion Support
- Chapter 5 Compliance Statements & User Information
- Chapter 6 Licensing & Warranty
- Chapter 7 Appendices
Software User Guide 103
Services Tab
EnableSSL:SelectYestoconfigureSSLclient/server.SelectNoandthentheApplybuttontodisableSSL.
SelectActivityLogLevel:ThisoptioncontrolsthelogginglevelforSSLConnectionactivity.Therecommendedsetting
foraproductionenvironmentis:Summary.Foratestenvironment:Full.
WaitforConnection(sec.):Time(in
seconds)allowedaftersendingSYNpackets,towaitforSYN‐ACK.Therecom‐
mendedsettingforthisfieldis20seconds.
IdleTimeout(min):Time(inminutes)allowedfornotrafficoveranSSLconnection,beforeclosingdownthelink.The
recommendedsettingforthisfieldis720(minutes).
EnableAdvance
Setup:SelectYestomodifyadvancedSSLoptions.
BindInterfaceforacceptingTCPConnections:Thiswillrestricttheunencryptedlisteningsockettoallowconnections
comingintothespecifiedinterfaceonly.TherecommendedsettingforthisfieldisAny.
BindInterfaceforoutgoingSSLConnections:Thiswillrestricttheencryptedsocketto
initiateconnectionsoutthe
specifiedinterfaceonly.Specifyinganinterfaceheremayconflictwithpolicyrouting,howeveritmayberequiredina
GRE/VPNorothertunneledenvironment.Pleaseconsultwithanetworkarchitectforadditionalassistance.Therec‐
ommendedsettingforthisfieldisAny.
Ciphers:Thisfieldisa
listofsupportedopensslciphers.Pleaseconsultsupportstaffbeforeattemptingtochange
thesevalues.ReferenceGoogle:“opensslcipherlist”formoreinformation.Therecommendedsettingforthisfieldis:
RC4‐MD5:RC5‐SHA:SSLv3
SelectCertificate:Specifyingacertificateinclientmodewillusethiscertificatechainasaclientsidecertificate
chain.
Usingclientsidecertsisoptional.ThecertificatesmustbeinPEMformat,withanunencryptedkey(notpasswordpro‐
tectedwhengenerated).UseAdmin‐>CertificateManagertoinstall/updatecerts.
SelectKeep‐Alivebehavior:ThisoptionenablesTCPKeep‐alivesontheunderlyingsockets.Thefollowingoptionsare
supported: