Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
649
Views
0
Helpful
2
Replies

ASA5525-X SSL Decryption

abdelfatah91
Level 1
Level 1

‎07-15-2015 02:18 PM - edited ‎03-10-2019 06:25 AM

Hi ,

I am new with dealing with Sourcefire , I have a question to ask , 

 

is 5525x platform with sourcefire module version 4.0.2 and Defense center 5.4.1 capable alone to decrypting the SSL traffic ? 

 

 

appreciating your help guys 

Labels:
0 Helpful
2 Replies 2

pazzi
Cisco Employee
Cisco Employee

‎07-15-2015 08:06 PM

Hi there

Only series 3 FirePOWER appliances running 5.4 support SSL decryption policies.

 

http://www.cisco.com/c/en/us/td/docs/security/firesight/540/relnotes/FireSIGHT-System-Release-Notes-v5-4.html#pgfId-222602

 

Paul

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-15-2015 08:54 PM

Even if a future release supports SSL decryption (as was hinted at during Cisco Live), the CPU burden will be significant.

Also, SSL decryption can also be very cumbersome for outgoing traffic (requiring PKI, certificate trust relationships, etc.)

Be careful what you wish for.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card