Scenario 5—configuring a firewall, Server configuration – HP e-Commerce Server Accelerator sa7120 User Manual

C H A P T E R 4 HP e-Commerce Server Accelerator SA7100/SA7120 User Guide

44

Scenario 5—Configuring a Firewall

This scenario describes the recommended network configuration to
allow a SA7100/SA7120 to provide SSL services for a single server
that also serves plain-text HTTP documents. Actual procedures for
adjusting the firewall and server configurations vary widely
depending upon the products used, so the steps outlined here are
necessarily approximations and must be adjusted as required by the
particulars of your environment. Please consult your server and
firewall documentation for additional information.

Single SA7100/SA7120 configured with single server and firewall

Server
Configuration

Servers providing both HTTP and HTTPS services typically have
two instances of the Web Server process configured:

•

One listening on the standard HTTP port of 80, providing
unencrypted access to non-sensitive information, and

•

Another listening on port 443 providing access to SSL encrypted
sensitive information.

For the SA7120 to provide SSL services, the web server process
providing port 443 services requires two modifications.

Server

Firewall

HP e-Commerce Server Appliance SA7100/SA7120

Port Number

Connection Type

Content Served

80

HTTP

Non-sensitive

443

HTTPS

Sensitive