secure-peering fallback-no-enc enable

Specifies that the SteelHead optimizes but does not encrypt the connection when it is unable to negotiate a secure, encrypted inner channel connection with the peer. This is the default setting. Enabling this option requires an optimization service restart.

Important: Riverbed strongly recommends enabling this setting on both the client-side and the server-side SteelHeads, especially in mixed deployments where one SteelHead is running RiOS v6.0 or later and the other SteelHead is running an earlier RiOS version.

This option applies only to non-SSL traffic.

Use this command to pass through connections that do not have a secure encrypted inner channel connection with the peer. Use caution when disabling this setting, as doing so specifies that you strictly do not want traffic optimized between non-secure SteelHeads. Consequently, configurations with this setting disabled risk the possibility of dropped connections. For example, consider a configuration with a client-side SteelHead running RiOS 5.5.x or earlier and a server-side SteelHead running RiOS v6.0 or later. When this setting is disabled on the server-side SteelHead and All is selected as the traffic type, it will not optimize the connection when a secure channel is unavailable, and might drop it.