Hi Everyone,
I am running a test on a WSA and I am unable to make HTTPS proxy to work at the moment, I can see in wireshark from a packet capture on the wire that the WSA is actively closing the TCP session and I receive an error message that is not generated by the WSA but rather than the windows client browser, HTTP instead works fine.
I indeed tried with several flavor of certificates, in order :
- local WSA self-singed certificate
- local WSA certificate signed by internal root CA
- uploaded internal root CA certificate and key
I installed all those certificates into the user and computer workstation's
- Trusted Root Certification autorities
- intermediate Root certification authorities
I tried disabling/enabling all TLS and SSL versions and I tried modifying the chipers on the WSA appliance
Let me show you here below
WSA ip : 192.168.2.162
Workstation ip : 10.1.128.2
HTTPS TCP session reset actively from the WSA
On the browser:
Additionally I am also seeing these logs on the appliance from https_logs:
Mon Oct 15 14:02:32 2018 Debug: HTTPS : - : DIAG: client did not complete SSL Handshake Mon Oct 15 14:02:32 2018 Debug: HTTPS : - : error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy request Mon Oct 15 14:02:32 2018 Trace: HTTPS : - : Error Function is: 118 Error Reason is:155
Accepted Solutions
