SSL/TLS filtering must have extension server_name
Options
PeterUK
Posts: 3,893 
Guru Member
Guru Member
For Content Filter the SSL/TLS traffic must have extension server_name or else block option.
1
Comments
-
I think the "Trusted Web Sites" , "Forbidden Web Sites" also use SNI (Server Name filed) to identify.
So it should work.
0 -
I don't think you get what I mean I want to allow all SSL/TLS traffic but drop traffic without extension server_name because the USG can't know what its for.
0
Master Member
Categories
- All Categories
- 435 Beta Program
- 2.7K Nebula
- 176 Nebula Ideas
- 118 Nebula Status and Incidents
- 6.1K Security
- 428 USG FLEX H Series
- 298 Security Ideas
- 1.6K Switch
- 79 Switch Ideas
- 1.2K Wireless
- 44 Wireless Ideas
- 6.7K Consumer Product
- 274 Service & License
- 422 News and Release
- 88 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 89 Security Highlight
