Guest

Preview Tool

Cisco Bug: CSCvu03338 - SSL confgured with SSLv3.0 removed in Version tab does not work for TLS traffic as well.

Last Modified

Jun 22, 2020

Products (1)

  • Cisco Firepower Management Center

Known Affected Releases

6.4.0.7 6.5.0.2

Description (partial)

Symptom:
SSL configured with SSLv3.0 removed in Version tab with decrypt and resign action does not work for TLS traffic as well. In the SSL verdict we can see that its showing the correct action of decrypt and resign but that verdict is not sent to snort and snort is stuck in waiting till HTTPS flow gets decrypted and cannot match any rule in the access control policy.

Conditions:
Issue is seen on 6.4.0.7 code and later versions.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.