Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
922
Views
0
Helpful
1
Replies

firepower policy self signed cert

Tejas Kunte
Level 1
Level 1

‎05-16-2018 07:42 AM - edited ‎02-21-2020 07:46 AM

is anyone aware of a intrusion rule in firepower that would block traffic if connecting to a server that uses a self signed cert ?

 

i saw this issue in my ftd deployment. once i created a allow rule in my access control policy the issue went away.

 

another strange issue is i did not see any blocks in connections or intrusion events.

has anyone else seen this issue ?

 

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-17-2018 05:42 AM

I'm not aware of any such issue. You can always run firewall-engine-debug from the cli to get detailed analysis of handling for a given flow.

 

https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212330-firepower-management-center-display-acc.html

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card