System Administration Guide: Network Services

Using the SSL Kernel Proxy in Zones

The SSL Kernel Proxy works in zones with the following limitations:

Example 2–5 Configuring an Apache Web Server in a Local Zone to Use the SSL Kernel Proxy

In the local zone, first stop the web server. In the global zone do all of the steps to configure the service. To create a instance for a local zone called apache-zone, use the following command:

# ksslcfg create -f pem -i /zone/apache-zone/root/keypair.pem -p /zone/apache-zone/root/pass \
    -x 8080 apache-zone 443

In the local zone, run the following command to enable the service instance:

# svcadm enable svc:/network/http:apache2