Hi
I want to bypass SSL decryption for few websites like Google, Apple, YouTube using DNs. How can I add that if certificate issued to Organization is Google LLC then do no decrypt? I tried O=Google LLC, didn't worked. I tried CN=*.google.com didn't worked as well.
Device - FTD 2130 running version 6.5.0.2 (same for FMC)
I do not want to use Application based, as there are lot of bugs around it. I hit UNSUPPORTED_EC_CURVE error, which TAC is trying to resolve, but still not working. Somewhere read, do no use Application based SSL rule.
I am having lots of issue with TLS1.3 sites with EC. Decryption FMC cert is SHA2 - RSA SubCA.
Thanks