07-31-2019 06:51 AM - edited 02-21-2020 09:21 AM
Hi All,
I have SSL Policy enabled on some ACs. Everything was working fine for a while until today I upgraded FMC and Firepower to 6.2.3.13 from 6.2.3.7. Our workers started complaining about not being able to connect to webmail. I checked connection events and saw that connections are block because SSL Policy with reason EC Curve not supported. I tried couple workarounds from BUGs and forums but with no result.
First of all I wonder why it started not to work after upgrading the patch. Moreover, I want to know why connection contains EC curves. My certificate is RSA based.
07-31-2019 07:18 AM
Go straight to TAC with this issue.
You may be hitting this behavior:
The fix is easy but should only be done after TAC confirms and recommends it.
07-31-2019 09:57 PM
Hi Marvin,
I have already tried to tweak clien_hello.cnf from firepower by following related bugs but with no result.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: