Command Line Interface Reference Guide > The SLB Configuration Menu
/cfg/slb/ssl/sslpol/passinfo
SSL Policy Passinfo Menu
The SSL Client Information (passinfo) settings are part of an optional configuration that, when enabled, instructs Alteon to pass the client’s SSL information to the back-end servers using HTTP headers. For example, you may decide that clients with 56-bit ciphers are handled by group1 while users with 128-bit ciphers are handled by group2. This is also useful when secure sites require a minimum cipher by the client.
By default, all parameters are not set, meaning that Alteon does not pass the client’s SSL information to the back-end servers.
Notes
*If the chosen field is empty in the incoming-traffic, Alteon displays this field without any value. You cannot configure an empty field name in the configuration.
*When a cache policy is enabled on a virtual service, and the cache serves the pages according to the client requests, Alteon does not send the SSL information to the back-end server.
*This feature is HTTP-dependent and cannot be used with simple SSL offloading, when traffic is directly decrypted and sent to the back-end servers with no manipulation per any SSL protocol.
 
[SSL Policy Policy_1 Passinfo Menu]
cipher - Set pass cipher-suite information to backend server
version - Set pass SSL version information to backend server
bits - Set pass cipher bits information to backend server
frontend - Enable/Disable add Front-End-Https: on header
comply - Enable/Disable X-SSL header compatible with 2424SSL headers
cur - Display current passinfo configuration
 
Pass SSL Information to Backend Servers Menu 
Command Syntax and Usage
cipher
 
If you want to pass information about the SSL cipher suite to the back-end servers, enter the SSL cipher suite header to be used in the HTTP header using this command. For more information on defining which cipher suites are defined for an SSL policy, see the discussion of the cipher command under /cfg/slb/ssl/sslpol SSL Policy Menu.
Default Header: Cipher-Suite
version
 
If you want to pass information about the SSL version to the back-end servers, enter the SSL version header to be used in the HTTP header using this command.
Default Header: SSL-Version
bits
 
If you want to pass the number of bits used for encryption by the cipher to the back-end servers, enter the bits header to be used in the HTTP header using this command.
Default Header: Cipher-Bits
frontend
 
When Alteon performs front-end SSL offloading for certain types of applications (for example, Outlook Web-Access (OWA)), these applications can adjust their behavior if they are made “aware” that there is front-end SSL offloading. To indicate this to the application, a special “Front-End-HTTPS” HTTP header can be added to requests.
Values: enabled, disabled
comply
 
Enables or disables X-SSL header compatible with 2424-SSL headers.
Values: enable, disable
cur
 
Displays the current status of the SSL policy passinfo configuration.