I just installed a new FTD in Azure (standalone, not managed by FMC), running 6.7.0-65.
I so far we have done no config, just set set a single static route to access our VNET and enabled management over the inside data interface. Getting a ERR_SSL_VERSION_OR_CIPHER_MISMATCH error accessing over the Inside Interface IP address, but works fine via the Management Interface.
I did a packet inspection with Wireshark and can see that via Management Int TLS 1.2 is negotiated, but over the Inside Interface it tries and fails to negotiate TLS 1.0 (which I assume Cisco has disabled for security reasons). I have no idea why 1.0 is being attempted, I even tried disabling it on my browser, but get the same result.
Again, all other settings on the FTDv are set at default for version 6.7. Taking a guess that maybe some kind of SSL inspection might be causing the issue, but haven't found what I need to disable, or what rule I need to create to allow (assuming that is even the issue).
