Name

HTTX-816 — CAPTURED-CONNECT request will fail when SNI-RESULT is UNKNOWN-PROTOCOL

Severity

W (warning)

Message text

CAPTURED-CONNECT request will fail when SNI-RESULT is UNKNOWN-PROTOCOL

Description

SSL/TLS inspection will likely fail when SNI inspection detected unknown protocol (i.e. not SSLv3 nor TLS 1.0 and higher). Do not use CAPTURE-CONNECT in REQUEST-ACL when SNI-RESULT contains UNKNOWN-PROTOCOL.

See also

logging(7)

Authors

This man page is a part of Kernun Firewall.
Copyright © 2000–2023 Trusted Network Solutions, a. s.
All rights reserved.