We move to the FTDv today, but we got a problem with a bank application that use a .pfx certificate to authenticate.
FW logs looks good, without blocks, but the application can't complete, I receive the error
"Erro: com.sun.xml.internal.ws.wsdl.parser.InaccessibleWSDLException: 2 counts of InaccessibleWSDLException.
javax.net.ssl.SSLProtocolException: The size of the handshake message (5571587) exceeds the maximum allowed size (32768) javax.net.ssl.SSLProtocolException: The size of the handshake message (5571587) exceeds the maximum allowed size (32768)"
When i do the same using the other FW I came from I don't receive any error.
Is the Certs are same and you only introuduced FTD in the path right ?
as per the rule you mentioned :
Do Not Decrypt
If you elect to bypass decryption for certain types of traffic, no processing is done on the traffic. The encrypted traffic proceeds to the access control policy, where it is allowed or dropped based on the access control rule it matches.