C.5. Using External SSL Accelerators

By default, the SGD Gateway is configured to work with incoming HTTP and AIP data connections that are secured using SSL. The Gateway also supports the use of external SSL accelerators for handling SSL processing.

To use an external SSL accelerator with the Gateway, do the following:

C.5.1. How to Enable External SSL Accelerator Support

Ensure that no users are connected to SGD through the Gateway.

  1. Log in as superuser (root) on the SGD Gateway host.

  2. Enable support for unencrypted incoming connections.

    Change the symbolic link for the gateway.xml file, so that it links to the gateway-plaintext.xml file, instead of the default setting of gateway-ssl.xml.

    Run the following command:

    # ln -fs /opt/SUNWsgdg/etc/gateway-plaintext.xml /opt/SUNWsgdg/etc/gateway.xml
  3. (Optional) Change the binding port for the Gateway.

    Depending on your network configuration, you might also need to change the binding port for the SGD Gateway.

    See Section C.3, “Changing the Binding Port for the SGD Gateway”.

  4. Restart the SGD Gateway.

    # /opt/SUNWsgdg/bin/gateway restart