If you are using a Web server plug-in, you can add one or more of the following custom properties to the configuration settings for that plug-in.
Specifies the label of the certificate within the keyring that the plug-in is to use when the Web container requests a client certificate from the plug-in. This custom property does not apply to any client certificate that is coming from the SSL connection with the browser. If you are using an SSL co-processor, and the plug-in is not running on a z/OS or i5/OS system, if you specify the token label, followed by a colon, as the value for this custom property the entire CertLabel value is used as the keyring label.
Data type | Boolean |
Default | False |
Specifies whether the plug-in should prefetch the partition table. When this custom property is enabled, the plugin prefetches the partition table so that affinity requests are maintained. The GetDWLMTable custom property must be enabled when memory-to-memory session management is configured for WebSphere® Application Server.
Data type | String |
Default | False |
Specifies the maximum number of headers that can be included in a request or response that passes through the Web server plug-in. If a request or response contains more than the allowable number of headers, the Web server plug-in drops the extra headers.
Data type | Integer |
Range | 1 - 4000 |
Default | 300 |
HTTPMaxHeaders = "<value>" in the Config tag. Example : <Config ASDisableNagle="false" AcceptAllContent="false" AppServerPortPreference="HostHeader" ChunkedResponse="false" FIPSEnable="false" HTTPMaxHeaders="2500" IISDisableNagle="false" IISPluginPriority="High" IgnoreDNSFailures="false" RefreshInterval="60" ResponseChunkSize="64" VHostMatchingCompat="false">
Specifies whether the Web server plug-in is to compare the setup of each new SSL transport with the setup of other SSL transports that are already defined in the configuration file. When you set this property to true, and the plug-in determines that the keyring and CertLabel values specified for the new SSL transport match the values specified for an already defined SSL transport, the plug-in uses the existing SSL environment instead of creating a new SSL environment. Creating fewer SSL environments means that the plug-in requires less memory, and the plug-in initialization time decreases, thereby optimizing your overall GSkit environment.
Data type | Boolean |
Default | False |
Permits the web server
plug-in to interface with the proxy servers and load balancers that
are listed for the TrustedProxyList custom property. When this property
is set to true, the proxy servers and load balancers in this trusted
proxy list can set values for the $WSRA and $WSRH internal headers.
$WSRA is the IP address of the remote host, which is typically the
browser, or an internal address that is obtained by Network Address
Translation (N.A.T.). $WSRH is the host name of the remote host. This
header information enables the web server plug-in to interface with
that specific proxy server or load balancer.
When you use this custom
property you must also use the TrustedProxyList custom property to
specify a list of trusted proxy servers and load balancers. Also,
you must clear the Remove special headers check box on the Request
Routing panel within the administrative console. For more information,
see the documentation on web server plug-in request routing properties.
Data type | Boolean |
Default | False |
Specifies a comma delimited list of all proxy servers or load balancers that have permission to interface with this Web server plug-in. This property must be used in conjunction with the TrustedProxyEnable=true custom property setting. If the TrustedProxyEnable custom property is set to false, this list is ignored.
TrustedProxyList = myProxyServer1.myDomain.com,myProxyServer2.com,192.168.0.1
Data type | String |
Default | None |