HP Traffic Director sa7220 User Manual

C H A P T E R 6

HP Traffic Director Server Appliances User Guide

226

Scenario 5:
Using SSL
Acceleration
(SA8200/
SA8220 only)

We now build upon Scenario 4 by adding a Layer 7 service using the
SA8220’s SSL acceleration capabilities. As discussed earlier, the
SA8220 can off load SSL processing from the web server, providing
dramatically improved performance.

The figure below shows the message flow when the SA8220 is used
for SSL processing.

SA8220 Used For SSL Processing

In the conventional secure web server setup, protected data is
accessed using the HTTPS (HTTP over SSL) on port 443. In this
example we add a new web server, “Serv3,” which along with
“Serv2” (defined in Scenario 4) hosts this data and accesses it through
VIP 10.1.1.201 on port 443. We assume the data is accessed on server
port 80 to isolate it from normal HTTP traffic. It is also strongly
recommended that secure data be isolated from the rest of the
network through the use of the inside NIC interface and the SA8220's
security firewall capabilities.

Client

sa8220

Internet

Switch

Server

Server

Server