Cisco ASA with FirePOWER and SSL decryption
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-21-2015 12:12 PM - edited 03-12-2019 06:08 PM
Hello,
are there any plans to implement SSL decryption/ interception in the new ASA series (e.g. 5506-X or 5512-X)? If yes is there a road map?
Kind Regards
- Labels:
-
NGFW Firewalls

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-21-2015 01:11 PM
Hi
I'm pretty sure i read that it would come in the 6.0 version.
I think it was on a Cisco live presentation, but I'm not sure.

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-16-2015 07:15 PM
With the FirePower Management 6.0 there is SSL Decryption but this is reportedly going to take a 60-70% hit on your throughput. Additional features coming out:
Rate Limiting based on AVC is supposed to come out either in: 6.0.1 or 6.1
SafeSearch available 6.1x
HTH.
JS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-17-2015 12:08 AM
Hello,
yes, I already enabled SSL decryption on an ASA. It's working fine on 5508 series.
Kind Regards
