Command Line Interface Reference Guide > The SLB Configuration Menu
/cfg/slb/ssl/inspect
SSL Inspection Menu
The SSL Inspection menu lets you define a key, a CA certificate, and the inspection certificate cache size.
 
>> SSL# inspect
------------------------------------------------------------------
[SSL Inspection Menu Menu]
key - Set key
cacert - Set signature CA certificate
memsize - Set memory size for inspection certificate cache
     cachekey - Set the certificate cache key
cur - Display current SSL Inspection configuration
 
SSL Inspection Menu (/cfg/slb/ssl/inspect) 
Command Syntax and Usage
cacert
 
Specifies the CA certificate (and key) that signs the server certificate generated by Alteon on-the-fly. Together with the private key the server certificate is used to establish SSL connection with the client. To avoid the client receiving a warning regarding the validity of the server certificate, the CA certificate should be either part of a certificate chain, signed by a trusted Root CA or a self-signed certificate that is imported in all clients browser.
Maximum characters: 32
memsize
 
Specifies the memory allocation, in MB, for the certificate cache memory.
Notes:
*Changing the memory allocation will clear the cache upon apply.
*SSL Inspection must be disabled on all relevant filters before the cache size can be changed.
Valid range: 1-100
cachekey
 
Specifies the certificate cache key.
In SSL inspection, the generated certificate can be stored in a cache based on SNI+IP+port (default) or based on SNI only (for the same SNI received from different IP/ports.)
Values:
*sni
*ip_port_sni (default)
Note: To change the certificate key, you must first disable SSL inspection on all filters.
cur
 
Displays the current SSL inspection settings.