topic FirePOWER 'response page' for SSL/TLS sites being blocked? in Network Security

FirePOWER 'response page' for SSL/TLS sites being blocked?

Thomas Winther — Tue, 12 Mar 2019 12:45:58 GMT

Hi there,

When FirePOWER is blocking SSL/TLS sites it would be preferable to see a response page, like with the HTTP pages.

Is that possible? I guess it is with the enabling of SSL inspection?

Any good guidance?

Kind regards

Thomas Winther

It's not possible at this

Marvin Rhoads — Thu, 17 Sep 2015 22:48:39 GMT

It's not possible at this time - even with the enabling of SSL inspection.

I just had a customer ask the same question. They have an AMP appliance inline with SSL decryption policy active and working with their trusted internal certificate.

We confirmed with the TAC that the response page cannot be inserted in the case of an SSL-decrypted inspection.

any idea when we can present

Marcin Zgola — Wed, 02 Dec 2015 05:56:46 GMT

any idea when we can present block response page to HTTPS block sites? Thank you

It's not even in the just

Marvin Rhoads — Thu, 03 Dec 2015 00:25:16 GMT

It's not even in the just-released version 6.0.

I haven't heard anything about it being on the future roadmap (or not).

Re: It's not even in the just

lsladmin — Tue, 12 Jun 2018 10:11:22 GMT

Are there any news in this case?
We use Firepower Services in the latest Version an enabled URL Filtering with Access Control Policy.
But most sites uses https instead of http an so the user get's a timeout Page instead of the Blocking response page, which is misleading for a normal user.