This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Is SSL decryption will increase the number of sessions?

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Is SSL decryption will increase the number of sessions?

Gururaj
L4 Transporter

‎08-24-2015 05:17 AM

Hi Team,

 

My doubt is that,..doing SSL decryption will increase the number of sessions?

example : if i access gmail there will be one tunnel established to the server (gmail) inside which text chat, video chat, other apps will be there.

Now if i enable SSL decryption will it increase the number of sessions as now it can see each and every activity and application inside the gmail.

 

Regards,

Guru

0 Likes Likes
3 REPLIES 3

pankaku
L5 Sessionator

‎08-24-2015 08:41 AM

There is a limit on number of session a firewall can decrypt. Check the following document.

 

https://live.paloaltonetworks.com/t5/Articles/How-to-Implement-and-Test-SSL-Decryption/ta-p/59719

0 Likes Likes

pulukas
L7 Applicator

‎08-25-2015 03:22 AM

SSL decryption does not impact your session count.

 

As Guru, mentions there is a separate limit for the number of active decryption sessions.

 

SSL decryption also impacts processing on the firewall so you should add this in stages to be sure you don't overload the capacity of the device. 

 

This is a good overview on how to ease in decryption.

 

https://live.paloaltonetworks.com/t5/Articles/Controlling-SSL-Decryption/ta-p/56218

Steve Puluka BSEET - IP Architect - DQE Communications (Metro Ethernet/ISP)
ACE PanOS 6; ACE PanOS 7; ASE 3.0; PSE 7.0 Foundations & Associate in Platform; Cyber Security; Data Center
0 Likes Likes

Lucky
L5 Sessionator

‎08-28-2015 11:08 PM

Hi Guru,

 

just to clarify - your previously encrypted sessions were showing as SSL and now they will show as the chat, video chat, etc. Number of overall sessions will not increase, you will only have better visibility into the content of some of those sessions that were previously encrypted. So, answer is no, number of sessions will not increase, it will just be less ssl sessions and more of the web-browsing and whatever other application is found within the encrypted flow.

 

Best regards

 

Luciano

0 Likes Likes
  • 2314 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks