Home
Help
Search
Login
Register
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email
?
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
Lab Minutes Forum
»
Technical Discussion
»
Security
»
Inbound SSL Decryption
Search
User Info
Username:
Password:
1 Hour
1 Day
1 Week
1 Month
Forever
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email
?
« previous
next »
Print
Pages: [
1
]
Author
Topic: Inbound SSL Decryption (Read 10629 times)
Pacerfan9
Cisco Newbie
Posts: 9
Reputation: 2
Certification: CCNP
Inbound SSL Decryption
«
on:
May 14, 2016, 06:55:52 PM »
I watched the ASA Firepower 6.0 SSL Decryption video and configured my lab following the first scenario with inbound decryption. I imported my Internal Certificate and configured the policy according to the video. However when I review the connection events my SSL traffic is not decrypted, the SSL status is Do Not Decrypt (Handshake Error). Any suggestions on how to troubleshoot and resolve this?
Logged
MC
Global Moderator
Cisco Guru
Posts: 401
Reputation: 606
CCIE x3 (RS,Sec,SP)
Certification: CCIE
Re: Inbound SSL Decryption
«
Reply #1 on:
May 16, 2016, 09:57:43 PM »
I assume the connection still works, just not being decryption by FP. Handshake failure can be a result of key length, or crypto suite mismatch between client and server. Would you be able to do packet capture to analyze SSL negotiation?
Logged
Print
Pages: [
1
]
« previous
next »
Lab Minutes Forum
»
Technical Discussion
»
Security
»
Inbound SSL Decryption
Related Topics
Subject / Started by
Replies
Last post
SSL Decryption on a custom URL category in Cisco SourceFire (On behalf of Terry)
Started by
Administrator
Security
1 Replies
20087 Views
December 19, 2017, 09:07:12 PM
by
Administrator
SimplePortal 2.3.7 © 2008-2024, SimplePortal