Open topic with navigation

PDFs

Troubleshooting

Validated Designs

Documentation Library (New!)

Inline SSL Decryption Deployments

There are two ways to deploy inline SSL decryption as follows:

•

sessions are inbound

•

sessions are outbound

Refer to Figure 1: Inbound Deployment of Inline SSL Decryption for an example of an inbound deployment. The client is on the Internet. The server and the GigaVUE node are located within the same enterprise network, with the GigaVUE node deployed on the server side. The GigaVUE node needs access to the private keys of the server to perform Man-in-the-Middle (MitM) decryption.

Figure 103

Inbound Deployment of Inline SSL Decryption

Use case for inline SSL decryption:

•

Clients on the Internet

•

Servers in internal network

•

Organization has the private key of the server

•

Diffie-Hellman and Perfect Forward Secrecy is being used

Refer to Figure 2: Outbound Deployment of Inline SSL Decryption for an example of an outbound deployment. The client and the GigaVUE node are located within the same enterprise network, with the GigaVUE node deployed on the client side. The server is located in another network on the Internet. In this deployment, the role of the GigaVUE node is that of a Man-in-the-Middle (MitM). In this deployment, the GigaVUE node does not have access to the private keys of the server, but as a trusted MitM, the GigaVUE node can look at SSL traffic.

Figure 104

Outbound Deployment of Inline SSL Decryption

Document INFORMATION

ONLINE DOCUMENTATION LIBRARY

Visit the Online Product Documentation page on the Gigamon Community to find the latest documentation offerings available online. Each online documentation portal also provides PDFs associated with that release.

Send feedback to: documentationfeedback@gigamon.com

PRODUCT INFORMATION

GigaVUE-FM 5.10

This online documentation was last updated: 4/20/2023

LEGAL INFORMATION

Copyright: Copyright © 2020-2023 Gigamon Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without Gigamon’s written permission.

Trademark Attributions: Gigamon and the Gigamon logo are trademarks of Gigamon in the United States and/or other countries. Gigamon trademarks can be found at http://www.gigamon.com/legal-trademarks. All other trademarks are the trademarks of their respective owners

COMPANY INFORMATION

Gigamon Inc.

3300 Olcott Street

Santa Clara, CA 95054

www.gigamon.com

JOIN THE GIGAMON COMMUNITY

The Gigamon Community is a technical site where Gigamon users, partners, security and network professionals and Gigamon employees come together to share knowledge and expertise, ask questions, build their network and learn about best practices for Gigamon products. The Gigamon Community is a great way to get answers fast, learn from experts and collaborate directly with other members around your areas of interest. Register today at community.gigamon.com.

CONTACTING SALES

+1.408.831.4025

inside.sales@gigamon.com

FOLLOW US