Firepower SSL Policy Block Reason
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-28-2019 11:07 PM - edited 02-21-2020 09:20 AM
Hi All,
I have 2 ASA5525x in failover state both with Firepower SFR installed on it. I configured SSL policy a year ago and it was working well. Last month we have migrated Terminal Server of Users to new VM and I started to see a lot of logs on ASDM telling "SFP requested to drop for particular IPs". I have looked at connection event for those IP address but see only a few Blocks with reason SSL Block. I assume that can be because either i have not enabled logging in SSL policy or I have only enabled logging at the end. In connection event I see below logs. Unfortunately I could not find any documents regarding that error type.
Any help is appreciated.
Thanks in advance!
- Labels:
-
NGFW Firewalls
