Use SSL Inspector to Inspect HTTPS Traffic

Important note: SSL Inspector requires the root certificate of your NGFW to be installed on the workstations / browsers that would be subjected for HTTPS inspection. 

For manually installing the root certificate via GPO-

https://support.untangle.com/hc/en-us/articles/216752327

 

For manually installing the root certificate on Mac OSX ( Yosemite ) -

https://support.untangle.com/hc/en-us/articles/216191898

 

For installing the root certificate on Windows using the installer-

  1. Navigate to Apps > SSL Inspector

  2. Click the Configuration tab.  
    SSLInspectorStatusTab.jpg

  3. Click the "Download root certificate installer" button and run through the installation wizard.
    SSLInspectorConfigTab.jpg





  4. By default, processing of HTTPS is enabled under Configuration tab.
    SSLInspectorConfigProtocolProcessing.jpg

  5. Under the Rules tab, by default SSL Inspector inspects Youtube, Google, Twitter, Yahoo, Bing, Wikipedia for HTTPS traffic. Check "Inspect all traffic" to process all other HTTPS sites, but be warned that SSL inspection can be highly resource-intensive and enabling this option can cause significant performance issues. It's better to create specific rules to inspect traffic that you know you need to inspect.
    SSLInspectorRulesInspectAll.jpg

  6. Click the power button under Status tab to turn on SSL Inspector.SSLInspectorStatusTabEnable.jpg

 

 

Follow
Was this article helpful?
0 out of 1 found this helpful
Have more questions? Submit a request

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk