-
-
-
-
-
-
-
-
ssl-policy
-
-
-
This content has been machine translated dynamically.
Dieser Inhalt ist eine maschinelle Übersetzung, die dynamisch erstellt wurde. (Haftungsausschluss)
Cet article a été traduit automatiquement de manière dynamique. (Clause de non responsabilité)
Este artículo lo ha traducido una máquina de forma dinámica. (Aviso legal)
此内容已经过机器动态翻译。 放弃
このコンテンツは動的に機械翻訳されています。免責事項
이 콘텐츠는 동적으로 기계 번역되었습니다. 책임 부인
Este texto foi traduzido automaticamente. (Aviso legal)
Questo contenuto è stato tradotto dinamicamente con traduzione automatica.(Esclusione di responsabilità))
This article has been machine translated.
Dieser Artikel wurde maschinell übersetzt. (Haftungsausschluss)
Ce article a été traduit automatiquement. (Clause de non responsabilité)
Este artículo ha sido traducido automáticamente. (Aviso legal)
この記事は機械翻訳されています.免責事項
이 기사는 기계 번역되었습니다.책임 부인
Este artigo foi traduzido automaticamente.(Aviso legal)
这篇文章已经过机器翻译.放弃
Questo articolo è stato tradotto automaticamente.(Esclusione di responsabilità))
Translation failed!
ssl-policy
The following operations can be performed on “ssl-policy”:
add | rm | unset | show | set |
add ssl policy
Adds an SSL policy. An SSL policy evaluates incoming traffic and applies a predefined action to requests that match a rule (expression). You have to configure the actions before creating the policies, so that you can specify an action when you create a policy.
Synopsis
add ssl policy
Arguments
name Name for the new SSL policy. Must begin with an ASCII alphanumeric or underscore (_) character, and must contain only ASCII alphanumeric, underscore, hash (#), period (.), space, colon (:), at (@), equals (=), and hyphen (-) characters. Cannot be changed after the policy is created.
The following requirement applies only to the Citrix ADC CLI: If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, “my policy” or ‘my policy’).
rule Expression, against which traffic is evaluated.
The following requirements apply only to the Citrix ADC CLI:
- If the expression includes one or more spaces, enclose the entire expression in double quotation marks.
- If the expression itself includes double quotation marks, escape the quotations by using the character.
- Alternatively, you can use single quotation marks to enclose the rule, in which case you do not have to escape the double quotation marks.
action Name of the built-in or user-defined action to perform on the request. Available built-in actions are NOOP, RESET, DROP, CLIENTAUTH, NOCLIENTAUTH, INTERCEPT AND BYPASS.
undefAction Name of the action to be performed when the result of rule evaluation is undefined. Possible values for control policies: CLIENTAUTH, NOCLIENTAUTH, NOOP, RESET, DROP. Possible values for data policies: NOOP, RESET, DROP and BYPASS
comment Any comments associated with this policy.
Example
add ssl action certInsert_act -clientCert ENABLED -certHeader CERT add ssl policy certInsert_pol -rule ‘HTTP.REQ.URL.STARTSWITH(“/secure.html”)’ -reqAction certInsert_act The above example adds an SSL policy to do Client certificate insertion into the HTTP requests for any web-objects under /secure/.
rm ssl policy
Removes an SSL policy.
Synopsis
rm ssl policy
Arguments
name Name of the SSL policy to be removed.
Example
rm ssl policy certInsert_pol
unset ssl policy
Removes the attributes of an SSL policy. Attributes for which a default value is available revert to their default values. Refer to the set ssl policy command for a description of the parameters..Refer to the set ssl policy command for meanings of the arguments.
Synopsis
unset ssl policy
Example
unset ssl policy pol1 -undefAction
show ssl policy
Displays information about all the SSL policies configured on the appliance, or displays detailed information about the specified SSL policy.
Synopsis
show ssl policy [
Arguments
name Name of the SSL policy for which to display detailed information.
Output
stateflag rule The expression that sets the condition for application of the SSL policy.
action The name of the action to be performed on the request.
undefAction Undef Action associated with the policy.
hits Number of hits.
undefHits Number of Undef hits.
activePolicy boundTo The entity name to which policy is bound
priority gotoPriorityExpression Expression specifying the priority of the next policy which will get evaluated if the current policy rule evaluates to TRUE.
labelType Type of policy label invocation.
labelName Name of the label to invoke if the current policy rule evaluates to TRUE.
description Description of the policy
comment Any comments associated with this policy.
bindPolicyType vserverType peFlags type type builtin Flag to determine if SSL policy is built-in or not
feature The feature to be checked while applying this config
devno count
Example
show ssl policy 1 SSL policy: 1) Name: certInsert_pol Rule: HTTP.REQ.URL.STARTSWITH(“.html”) Action: certInsert_act Hits: 0
set ssl policy
Modifies the parameters of an SSL policy.
Synopsis
set ssl policy
Arguments
name Name of the SSL policy to modify.
rule Expression, against which traffic is evaluated.
The following requirements apply only to the Citrix ADC CLI:
- If the expression includes one or more spaces, enclose the entire expression in double quotation marks.
- If the expression itself includes double quotation marks, escape the quotations by using the character.
- Alternatively, you can use single quotation marks to enclose the rule, in which case you do not have to escape the double quotation marks.
action Name of the built-in or user-defined action to perform on the request. Available built-in actions are NOOP, RESET, DROP, CLIENTAUTH, NOCLIENTAUTH, INTERCEPT AND BYPASS.
undefAction Name of the action to be performed when the result of rule evaluation is undefined. Possible values for control policies: CLIENTAUTH, NOCLIENTAUTH, NOOP, RESET, DROP. Possible values for data policies: NOOP, RESET, DROP and BYPASS
comment Any comments associated with this policy.
Example
set ssl policy pol1 -rule “HTTP.REQ.HEADER(\“header\”).CONTAINS(\“qh2\”)”
Share
Share
In this article
This Preview product documentation is Citrix Confidential.
You agree to hold this documentation confidential pursuant to the terms of your Citrix Beta/Tech Preview Agreement.
The development, release and timing of any features or functionality described in the Preview documentation remains at our sole discretion and are subject to change without notice or consultation.
The documentation is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making Citrix product purchase decisions.
If you do not agree, select I DO NOT AGREE to exit.