Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1183
Views
0
Helpful
1
Replies

FirePOWER SSL decryption only to display response page

Luca Vidali
Level 1
Level 1

‎08-05-2017 09:38 AM - edited ‎03-12-2019 06:28 AM

Hi,
we are using firepower 6.2 on SFR module on Cisco ASA and Firesight management center.
We notice that when a user visit an URL denied by a policy, if the URL is in HTTPS the block response page is not displayed.
If the user tries to visit the same URL in HTTP the response page is correctly displayed.
Based on the cisco documentation,  probabily we need to configure the SSL policy and the SSL inspection.
But the question is: is it possibile to configure the SSL inspection ONLY to display the block page? With fortigate for example is possibile with the SSL inspection mode named "SSL certificate inspection" which inspect only the SSL/TLS handshake and perform MITM only if the fortigate needs to display a block page to the user.
Thanks
Luca

Labels:
0 Helpful
1 Reply 1

Jetsy Mathew
Cisco Employee
Cisco Employee

‎08-07-2017 01:51 AM

Hello Luca

Is the HTTPS connection are getting blocked without SSL ? 

However you  need the decryption policy to get the HTTPS response block page.

Regards

Jetsy 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card