Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
523
Views
0
Helpful
0
Replies

Some HTTPS traffic being blocked

jha
Level 1
Level 1

‎06-10-2015 02:17 PM - edited ‎03-11-2019 11:05 PM

We have a PIX 515 with 6.2(2). It's been a long time since rebooting.  Browsing websites with HTTPS from within the network behind the PIX is pretty slow and in some cases graphics display poorly and HTML tables don't paint correctly. That's not the biggest problem though.

Our Windows Server 2008R2 is unable to make secure connection to newer stronger security sites. Examples would be secure.authorize.net and www.geotrust.com. The connection times out. Doing an openssl shows the following:

OpenSSL> s_client -connect www.geotrust.com:443 -state

Loading 'screen' into random state - done

CONNECTED(0000011C)

SSL_connect:before/connect initialization

SSL_connect:SSLv2/v3 write client hello A

SSL_connect:error in SSLv2/v3 read server hello A

write:errno=10060

OpenSSL>

Is it possible that the PIX is the culprit and would not allow certain more secure SHA256 data come through. I will try rebooting the PIX to see if that helps. Should the software be upgraded and to what? How frequent should the PIX be rebooted? And what about a hard reboot by unplugging from power.  Unfortunately I do not have any log files to check. Any information would be very helpful.

 

Thanks

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card