SSL Decryption Time Suck

Reply
L3 Networker

SSL Decryption Time Suck

Has anyone else noticed a high level of effort required to support SSL Decryption on the PA's?  We have this feature activated on a few clusters and this seems to be one of the most time intensive efforts to support with weekly (if not daily) SSL Decryption bypasses for various websites.

L6 Presenter

Re: SSL Decryption Time Suck

I experience similar, so bad that as soon as we have a call logged regarding a failed website we firstly stick it in the no decrypt rule before trying anything else.

 

i can understand some sites that cannot be decrypted as they are not sticking to certsin regulations and that some sites also avoid mim, but even though a non decrypted site is alloed to pass decrypted we still have sites that will only work if in the no decrypt rule.

 

mainly tagging this for update notification as someone is sure to enlighten...

plus... If it all worked smoothley, i would be out of a job... Lol.

L3 Networker

Re: SSL Decryption Time Suck

This is definately an area that could use attention.  There are over 2,000 threads when I search in the forums here.  That is pretty significant number.

 

ssl-threads.png

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!