cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

265
Views
0
Helpful
0
Replies
sphbecker1
Beginner

FTD: SSL Error accessing management page from internal interface.

I just installed a new FTD in Azure (standalone, not managed by FMC), running 6.7.0-65.

 

I so far we have done no config, just set set a single static route to access our VNET and enabled management over the inside data interface. Getting a ERR_SSL_VERSION_OR_CIPHER_MISMATCH error accessing over the Inside Interface IP address, but works fine via the Management Interface.

 

I did a packet inspection with Wireshark and can see that via Management Int TLS 1.2 is negotiated, but over the Inside Interface it tries and fails to negotiate TLS 1.0 (which I assume Cisco has disabled for security reasons). I have no idea why 1.0 is being attempted, I even tried disabling it on my browser, but get the same result.

 

Again, all other settings on the FTDv are set at default for version 6.7. Taking a guess that maybe some kind of SSL inspection might be causing the issue, but haven't found what I need to disable, or what rule I need to create to allow (assuming that is even the issue).

0 REPLIES 0
Content for Community-Ad