Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2242
Views
0
Helpful
2
Replies

Slow HTTPs response time through CSS after applying KB2585542 to windows client

baucomjim
Level 4
Level 4

‎02-10-2012 11:30 AM

Anyone else having issues with HTTPS sites being very slow after applying KB2585542?   Once you remove this Microsoft patch everything returns to normal.   It appears that the CSS does not handle the split-ssl requests properly.  I have opened a TAC case but am not really getting anywhere as we seem to be the only company that is having this issue.

Thanks,

Jim

Labels:
0 Helpful
2 Replies 2

baucomjim
Level 4
Level 4

‎02-10-2012 11:48 AM

A few more details about this patch from Microsoft:

Details about this security patch:

http://support.microsoft.com/kb/2585542

RFC's

Application can handle Fragmentation of SSL/TLS application records, as described in the following RFC’s:

TLS 1.0: http://www.ietf.org/rfc/rfc2246.txt paragraph 6.2.1

SSL 3.0 http://www.ietf.org/rfc/rfc6101 paragraph 5.2.1

0 Helpful

Daniel Arrondo Ostiz
Cisco Employee
Cisco Employee
In response to baucomjim

‎02-13-2012 05:25 AM

Hi Jim,

We are seeing quite a lot of issues caused by this patch on multiple platforms, but they are mostly related to L7 processing of the traffic (header parsing, cookie insertion...). It's the first time I hear that it's causing slowness. For your awareness, there is a bug (CSCtx68270) open to track these issues.

Anyway, if you already have a TAC case open, please, folow up with the engineer handling it. Probably he already requested it, but if he didn't, getting traffic captures on both sides of the CSS would be helpful to troubleshoot this issue further.

Regards

Daniel

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card