cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
236
Views
0
Helpful
2
Replies
Beginner

Cisco FirePOWER SSL Block

Currently using FirePOWER, experiencing an unexpected SSL Block for some traffic, SSL rule has been created not to decrypt the traffic, URLs that are being accessed are whitelisted, SSL Flow error is Defer Cut Post CCs (0x0000197), SSL version TLSV1.2, The SSL flow flags show the handshake to be complete but yet FirePOWER is still blocking the traffic, I have an access policy for the internal source to allow all traffic from any network, any insight would be greatly appreciated. The service attempting to access my internal VMS is WISENet WAVESync 

Everyone's tags (1)
2 REPLIES 2
Highlighted
Hall of Fame Master

Re: Cisco FirePOWER SSL Block

Have you tried a packet capture with trace while filtering on the interesting traffic?

Beginner

Re: Cisco FirePOWER SSL Block

Marvin, 

 

I have not yet, that was my next step, i'll post with that data soon, thank you for the insight