SSL/TLS filtering must have extension server_name
PeterUK
Posts: 1,383 
Guru Member
Guru Member
For Content Filter the SSL/TLS traffic must have extension server_name or else block option.
1
Comments
-
I think the "Trusted Web Sites" , "Forbidden Web Sites" also use SNI (Server Name filed) to identify.
So it should work.
0 -
I don't think you get what I mean I want to allow all SSL/TLS traffic but drop traffic without extension server_name because the USG can't know what its for.
0
Freshman Member
Categories
- 6.9K All Categories
- 2 Education Center
- 1.4K Nebula
- 34 Nebula Ideas
- 40 Nebula Status and Incidents
- 3.9K Security
- 203 Security Ideas
- 748 Switch
- 31 Switch Ideas
- 627 WirelessLAN
- 9 WLAN Ideas
- 4.6K Consumer Product
- 104 Service & License
- 223 News and Release
- 39 Security Advisories
- 520 FAQ
- 238 Nebula FAQ
- 120 Security FAQ
- 73 Switch FAQ
- 67 WirelessLAN FAQ
- 6 Consumer Product FAQ
- Documents
- 30 Nebula Monthly Express
- 44 About Community
- 31 Security Highlight
