IBM WebSphere DataPower Community Forum IBM Webspere DataPower XI50
October 12, 2008, 02:05:04 PM *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: IBM WebSphere DataPower SOA Appliance Forum - Just Launched come share your knowledge!!! These forums will be a great place to build a community. This site is not associated with IBM.
 
   Home   Help Search Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: XML Firewall with a SSL Handler  (Read 224 times)
aanchalkarnwal
Newbie
*
Offline Offline

Posts: 1


View Profile
« on: April 15, 2008, 02:32:14 AM »
Hi All,

I have configured a service using XML Firewall. My requirement is to make front end using SSL Proxy Handler.For that i have entered the Front End Port as 443, Device Address as : 0.0.0.0 . I have also configured SSL Server Crypto Profile with private keys and certificates. My request type is XML.
Now when i am sending the request using CURL. I am gettin an error as Could not connect to host.

Same configurations when i am testing with HTTP Handler, its working fine and request and response flow is proper.

Can any one help in configuring the XML firewall using HTTPS/ SSL Handler.

Thanks,
Aanchal
Logged
sinusekhar
Newbie
*
Offline Offline

Posts: 20


sekhar_sinu
View Profile WWW Email
« Reply #1 on: April 16, 2008, 09:30:49 AM »
Curl requires a -k option when you want to ignore the certs/keys for a server auth based SSL. If you are using Mutual Auth SSL, then it becomes a little tricky with Curl, as you would have to modify the Certificates etc.

I would recomment soapUI for Mutual Auth SSL testing and Curl for just a Server Auth.

Sinu
Logged
vijay.akula@gmail.com
Newbie
*
Offline Offline

Posts: 3


View Profile Email
« Reply #2 on: July 22, 2008, 07:21:06 AM »
If it was only client to server SSL and you don't care about client validating server certificate you could use the following option for CURL
-k/--insecure      Allow connections to SSL sites without certs (H)
Logged
Vijay Akula,
Application Designer,
Wellington, New Zealand
+64211800129
tw
Newbie
*
Offline Offline

Posts: 3


View Profile
« Reply #3 on: August 29, 2008, 09:19:27 PM »
This is an old thread but for what it is worth I like to use curl, openssl, and sometimes a packet trace when debugging ssl connection and handshake problems.
curl example would be:  curl -v -k https://www.ibm.com
openssl would be:  openssl s_client -connect www.ibm.com:443

packet traces ill leave that for another day Smiley

hope it helps.
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  



DataPower Links
Powered by SMF | SMF © 2006-2007, Simple Machines LLC
Seo4Smf © Webmaster's Talks
This Site is not associated with IBM