SSL Inspection Pages SLOW
All Replies
-
Hi @DG_1 ,
Greeting Forum, Thank your feedback.
Could you check if you are using "ECDSA-RSA-1024" in Server signed certificate key mode ?
Thank you
0 -
0
-
Hello!
I tried the "ECDSA-RSA-1024" in Server signed certificate key mode, but unfortunately it didn't really help.
We have USG FLEX 500, firmware version is V5.37(ABUJ.0).0 -
Hi @DG_1 ,
Please kindly update the below firmware and perform CLI
Router# debug content-filter cache activate
Router# debug content-filter cache show
→output should: Cache Original: No
https://fwstore-zsdn-cloud-zyxel-com.s3.us-east-1.amazonaws.com/5.37/2023-WK30/537ABUJ0ITS-23WK30-r110387.zipThe original mechanism is to cache "Full URL", those commands turn off this mechanism and only do "Domain match", so please note the accuracy may be reduced.
For example, the following URL will all match to "serach engine"
https://a.search.com/ ==>ori category: serarch engine
https://a.search.com/ad/sample.html ==> ori category: advertisement
https://a.search.com/ad/lootbox.php ==> ori category: phishing
Thanks
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight