Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
406
Views
0
Helpful
1
Replies

SSL deep packet inspection

tedauction
Level 1
Level 1

‎05-02-2017 06:48 PM - edited ‎03-12-2019 02:18 AM

Hello, I am running SSL deep packet inspection (proxying users SSL queries) via my firewall.

I have noticed that some websites fail until I make an exception for them. I understand this is normally due to public key pinning (HPKP).

However I have run numerous tests on these websites and they do not seem to be using public key pinning.

What other reasons could there be for Deep Packet Inpsection failing on some HTTPS websites ?

Thank you.

Labels:
0 Helpful
1 Reply 1

Philip D'Ath
VIP Alumni
VIP Alumni

‎05-02-2017 10:03 PM

Sometimes they use old technologies like SSLv3 instead of TLSv1.2 so so the proxies will refuse to connect to them.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card