DX - Load Balancing & Application Acceleration
Reply
zoe
Visitor
zoe
Posts: 7
Registered: ‎07-03-2008
0
Accepted Solution

SSL session reuse

I have 3 DX appliances, and one of them is not reusing SSL sessions: ReusedSessions is always 0 when checking SSL stats (show server stats history ssl listen). I had compared the configurations and I had found two paramaters for server factory settings that are differents, but I don't know what they mean. Those settings are:

 

Factory s scl

Factory s sct

 

They are disabled in the appliance that is not reusing SLL sessions, while enabled in the others.

¿Which is the meaning of those settings? ¿Are there other parameters influencing SSL session reuse?

Trusted Contributor
ChristopherHowarth
Posts: 52
Registered: ‎11-30-2007

Re: SSL session reuse

Hello Zoe, 

 

I believe you have found the source of your issue.

 

The meaning of those commands is as follows:

 

Factory s scl = SSL Session Caching on the Listen side

Factory s sct = SSL Session Caching on the Target side

Regards,

Christopher Howarth CISSP RHCE JNCIS-FWV JNCIA-WX/SSL
zoe
Visitor
zoe
Posts: 7
Registered: ‎07-03-2008
0

Re: SSL session reuse

Thanks Christopher! I have just enabled the settings and CPU utilization has decreased in a 50%.
Trusted Contributor
ChristopherHowarth
Posts: 52
Registered: ‎11-30-2007
0

Re: SSL session reuse

Great! Glad I could help.
Regards,

Christopher Howarth CISSP RHCE JNCIS-FWV JNCIA-WX/SSL
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.