06-27-2023 11:56 AM
We are receiving a decrypt-unsupport-param to a specific destination with no ssl inspection applied. I created a no decrypt rule and didnt apply a decryption profile so we weren't checking for expired or untrusted certs either. There is also nothing in the decryption logs for this destination IP address (we only log on failure)
If I filter and check the counters in the firewall I am met with TCP sessions closed via injecting RST. I can not find an indication as to why we are actually hitting an error with this site. This is a public site that we do not host.
In the traffic logs it shows action allow, type deny, session end reason decrypt-unsupport-param error
