Question & Answer
Question
Web Reverse Proxy has some timeout configuration.
One of them is client-connect-timeout.
According to the figure 1 in manual pages (links are in the related URL section), client-connect-timeout is used between after "Connect" and until "Request 1 - fragment 1".
How is this explanation applied to HTTPS?
Answer
"Connect" in the figure is TCP/IP's 3 way handshake, which happens in both HTTP and HTTPS.
client-connect-timeout is used until the first byte of data is received after the 3 way handshake.
To achieve SSL/TLS connection, SSL/TLS handshake is required, and it needs to be finished before the first HTTP request is received. So, in SSL/TLS case, once SSL/TLS handshake is started, timeout between each data fragment is controlled by intra-connection-timeout.
This negotiation is not explicitly described in the figure in the manual. For more accurate explanation, refer the figure attached below instead.
![client-connect-timeout for ssl/tls session](/support/pages/system/files/inline-images/timeout.png)
Related Information
[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSRGTL","label":"IBM Security Verify Access"},"ARM Category":[{"code":"a8m0z000000cxuqAAA","label":"Security Verify Access-\u003EReverse Proxy"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Product Synonym
ISAM;ISVA
Was this topic helpful?
Document Information
Modified date:
07 October 2022
UID
ibm16827801