cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
720
Views
0
Helpful
1
Replies

FTD SSL Decryption not working for certain sites

mattmacnish86
Level 1
Level 1

Has anyone had an issue when implementing SSL decrypt resign with it not working for certain sites (for example theguardian.com or pinterest).

The frustrating thing is this is not always the same on every PC with certain ones working on different machines.

There is no known error message and the packet capture shows the right cert is being sent to the device.

Also the FMC shows that its being allowed as well.

TAC is looking into it as well but thought I'd ask if anyone has seen this before.

1 Reply 1

mattmacnish86
Level 1
Level 1

Just to add some more information.  The Event Viewer is showing allow for it, default action is allow and a packet capture by wireshark sees the correct resigned cert.

Review Cisco Networking for a $25 gift card