DPI-SSL - implicit Exclusion for HTTPS Management Port
BWC
Cybersecurity Overlord ✭✭✭
While fighting with DPI-SSL again, I became aware that DPI-SSL automatically excludes Traffic on the Port which is defined for managing the Firewall Appliance via HTTPS. E.g. if you like to access your Firewall via 8443, all external Connections to some Server:8443 will be excluded from DPI-SSL.
Tested with SonicOS 6.5.4.11, will try on Gen7 in the next days.
I could not find any reference or documentation, therefore it should be handled with caution. Guess what happens when Management runs on 443, not funny. 🙄
--Michael@BWC
Category: Mid Range Firewalls
0
Comments
I did not have this experience with Gen 7 FWIW.
@TKWITS Gen7 for the win then :) - thanks for checking.
--Michael@BWC