https://community.cisco.com/t5/network-security/cisco-ftd-file-policy-with-ssl-decryption/m-p/3819022#M990832 <P>Hello team,</P> <P>I'm asking if i can create a file policy that inspect files through encrypted tunnel ssl/TLS communication.</P> <P>regards</P> <P>Ahmed</P> Fri, 21 Feb 2020 16:56:27 GMT atrif 2020-02-21T16:56:27Z https://community.cisco.com/t5/network-security/cisco-ftd-file-policy-with-ssl-decryption/m-p/3819022#M990832 <P>Hello team,</P> <P>I'm asking if i can create a file policy that inspect files through encrypted tunnel ssl/TLS communication.</P> <P>regards</P> <P>Ahmed</P> Fri, 21 Feb 2020 16:56:27 GMT https://community.cisco.com/t5/network-security/cisco-ftd-file-policy-with-ssl-decryption/m-p/3819022#M990832 atrif 2020-02-21T16:56:27Z https://community.cisco.com/t5/network-security/cisco-ftd-file-policy-with-ssl-decryption/m-p/3819615#M990839 <P>If you have an SSL policy that decrypts the traffic for inspection, any file policy happens post-decryption in the Snort order of operations - so it should inspect the files.</P> <P>Few people use Firepower for widespread decryption of all incoming traffic though. It's generally more advisable to put AMP on the endpoints for things like that.</P> Thu, 14 Mar 2019 15:00:41 GMT https://community.cisco.com/t5/network-security/cisco-ftd-file-policy-with-ssl-decryption/m-p/3819615#M990839 Marvin Rhoads 2019-03-14T15:00:41Z