Chapter 16 SSL VPN : Basic configuration : Additional configuration options : SSL offloading
  
SSL offloading
To configure SSL offloading, which allows or denies client renegotiation, you must use the CLI. This helps to resolve the issues that affect all SSL and TLS servers that support renegotiation, identified by the Common Vulnerabilities and Exposures system in CVE-2009-3555. The SSL offloading renegotiation feature is considered a workaround until the IETF permanently resolves the issue.
The CLI command is ssl-client-renegotiation and is found under the config firewall vip syntax.
See Also
Routing in tunnel mode
Changing the port number for web portal connections
SSL offloading
Host check
Windows OS check
Configuring cache cleaning
Configuring virtual desktop
Configuring client OS Check
Adding WINS and DNS services for clients
Setting the idle timeout setting
SSL VPN logs
Monitoring active SSL VPN sessions