Cisco Bug: CSCvu03338 - SSL confgured with SSLv3.0 removed in Version tab does not work for TLS traffic as well.
Jun 22, 2020
- Cisco Firepower Management Center
Known Affected Releases
Symptom: SSL configured with SSLv3.0 removed in Version tab with decrypt and resign action does not work for TLS traffic as well. In the SSL verdict we can see that its showing the correct action of decrypt and resign but that verdict is not sent to snort and snort is stuck in waiting till HTTPS flow gets decrypted and cannot match any rule in the access control policy. Conditions: Issue is seen on 220.127.116.11 code and later versions.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases