https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927986#M1029934 <P>Hi Guys,</P> <P></P> <P>I am trying to inspect incoming SSL traffic in my FirePOWER as I have internal SSL web server.&nbsp;</P> <P>Cert and Key are already imported through PKI object management and SSL policy is already created too. However, I am here a bit lost my way to find out the verification where my SSL policy to incoming SSL traffic is working properly or not.</P> <P></P> <P>Could you here tell me where and how to verify it? Thanks much.</P> <P></P> <P>With Love,</P> <P>Si Thu</P> Tue, 12 Mar 2019 13:04:41 GMT Sithulwin 2019-03-12T13:04:41Z https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927986#M1029934 <P>Hi Guys,</P> <P></P> <P>I am trying to inspect incoming SSL traffic in my FirePOWER as I have internal SSL web server.&nbsp;</P> <P>Cert and Key are already imported through PKI object management and SSL policy is already created too. However, I am here a bit lost my way to find out the verification where my SSL policy to incoming SSL traffic is working properly or not.</P> <P></P> <P>Could you here tell me where and how to verify it? Thanks much.</P> <P></P> <P>With Love,</P> <P>Si Thu</P> Tue, 12 Mar 2019 13:04:41 GMT https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927986#M1029934 Sithulwin 2019-03-12T13:04:41Z https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927987#M1029936 <P>Hi</P> <P></P> <P>You can check the connection events. Enable the SSL filters in SSL policy to see which ssl rule the traffic is hitting and if its being encrypted or no.</P> <P>Navigate to analysis&gt; connection events&gt;tables view of connection events.</P> <P>Click on any filed cross sign and enable the SSl related fields as shows in screenshot.</P> <P>Then you can either filter events based on connection events or see the traffic as it hits that.</P> <P>Rate if helps.</P> <P>Yogesh</P> <P></P> Sun, 17 Jul 2016 11:43:23 GMT https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927987#M1029936 yogdhanu 2016-07-17T11:43:23Z https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927988#M1029941 <P>Hi Yogdhanu,</P> <P></P> <P>Thanks much for your guide.&nbsp;</P> <P></P> <P>As for inspecting incoming SSL traffic for internal SSL web server, I have created internal cert (for <G class="gr_ gr_9 gr-alert gr_gramm gr_run_anim Grammar only-ins doubleReplace replaceWithoutSep" id="9" data-gr-id="9">web</G> server) under PKI object management. And created SSL policy for inbound traffic as the screenshot. Not: I am not going to decrypt to outbound SSL traffic.&nbsp;</P> <P></P> <P>Could you please advise on my SSL whether it is correct particularly for incoming SSL traffic. Many thanks.&nbsp;</P> <P></P> <P>With Love,</P> <P>Si Thu</P> Sun, 17 Jul 2016 14:52:35 GMT https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927988#M1029941 Sithulwin 2016-07-17T14:52:35Z https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927989#M1029943 <P>Hi,</P> <P></P> <P>yes, that is correct settings for only internal web server traffic.</P> <P></P> <P>Thanks,</P> <P>Ankita</P> <P></P> <P></P> Mon, 18 Jul 2016 09:20:36 GMT https://community.cisco.com/t5/network-security/how-to-verify-ssl-decryption-in-firepower/m-p/2927989#M1029943 ankojha 2016-07-18T09:20:36Z