SSL/TLS filtering must have extension server_name

Options
PeterUK
PeterUK Posts: 3,887  Guru Member
100 Answers 2500 Comments Friend Collector Seventh Anniversary
edited July 2024 in Security Ideas

For Content Filter the SSL/TLS traffic must have extension server_name or else block option.


1
Up Down
1 votes

Active · Last Updated

Comments

  • WJS
    WJS Posts: 156  Master Member
    5 Answers First Comment Friend Collector Third Anniversary
    I think the "Trusted Web Sites" , "Forbidden Web Sites"  also use SNI (Server Name filed) to identify.
    So it should work.


  • PeterUK
    PeterUK Posts: 3,887  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    I don't think you get what I mean I want to allow all SSL/TLS traffic but drop traffic without extension server_name because the USG can't know what its for.


Categories

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)