beautypg.com

Https/ssl server health checks, Wap gateway health checks – Nortel Networks WEB OS 212777 User Manual

Page 240

background image

Web OS 10.0 Application Guide

240

n

Chapter 10: Health Checking

212777-A, February 2002

Configuring the Switch for RADIUS Secret and Password

RADIUS is stateless and uses UDP as its transport protocol. To support RADIUS health
checking, the network administrator must configure two parameters on the switch:

n

the

/cfg/slb/secret

value

n

the

content

parameter with a username:password value

.

HTTPS/SSL Server Health Checks

The

sslh

health check option on the Real Server Group Menu (

/cfg/slb/group

<#>)

allows the switch to query the health of the SSL servers by sending an SSL client “Hello”
packet and then verify the contents of the server’s “Hello” response. SSL health check is per-
formed using the real server port configured, that is, the

rport

.

The SSL enhanced health check behavior is summarized below:

n

The switch sends a SSL “Hello” packet to the SSL server.

n

If it is up and running, the SSL server responds with the “Server Hello” message.

n

The switch verifies fields in the response and marks the service “Up” if the fields are OK.

During the handshake, the user and server exchange security certificates, negotiate an encryp-
tion and compression method, and establish a session ID for each session.

WAP Gateway Health Checks

Wireless Application protocol (WAP) carries Internet traffic to mobile devices and allows Web
services to be delivered to mobile phones and handsets. The translation from HTTP/HTML to
WAP/WML (Wireless Markup Language) is implemented by servers known as WAP gateways
on the land-based part of the network. WAP devices can communicate in two ways:

n

Wireless Session Protocol (WSP) content health checks, the unencrypted mode of sending
WML traffic (similar to HTTPS).

n

Wireless Transport Layer Security (WTLS) health checks, an encrypted mode of sending
WML traffic (similar to HTTP).

>> # /cfg/slb/group

(Select the real server group)

>> # health radius

(Specify the type of health checking)

>> # content <

username>

:

(Specify the RADIUS username:pass-
word value)

>> # /cfg/slb/adv/secret

(Enter up to 32 alphanumeric charac-

ters used to encrypt and decrypt pass-
word)

See also other documents in the category Nortel Networks Hardware: