Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working With Encrypted Data > Decryption and Encryption > SSL configuration settings for outbound traffic
SSL configuration settings for outbound traffic
Help | Content Gateway | Version 8.1.x
Use Configure > SSL > Decryption / Encryption > Outbound to configure SSL and TLS settings, session cache, and ciphers for outbound traffic (Content Gateway to the origin server).
1.
Under Protocol Settings, indicate which protocols you want Content Gateway to support. Supported protocols are:
*
*
*
 
Note 
Select the protocols that your organization's security policy has adopted.
You must select at least one protocol.
You can select different protocols for inbound traffic.
2.
Select Session Cache if you want to cache keys until the time specified in Session Cache Timeout expires. If keys are not cached, each request is negotiated again.
Setting the Session Cache Timeout to 0 (zero) causes session caching to be disabled.
3.
4.
The Default setting indicates to use all available ciphers except the eNULL, ADH, and EXP suites.
The strongest cipher (providing the highest level of encryption) is applied first. This can be set to a different level of encryption than for inbound traffic.
Additional cipher settings are:
*
High encryption cipher suites: those with key lengths larger than 128 bits, and some cipher suites with 128-bit keys.
*
Medium encryption cipher suites: those using 128 bit encryption.
*
Low encryption cipher suites: those using 64- or 56-bit encryption algorithms but excluding export cipher suites.
For outbound requests, consider using one of the higher encryption levels to improve security.
For more information on ciphers, refer to www.openssl.org/docs.
5.
Click Apply.
6.
Click Restart on Configure > My Proxy > Basic > General.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Working With Encrypted Data > Decryption and Encryption > SSL configuration settings for outbound traffic
Copyright 2016 Forcepoint LLC. All rights reserved.