Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL/TLS inspection errors

Hi,

I have a IPSEC VPN between XG <--> UTM all good and stable, but when I try from XG LAN to access webadmin on remote UTM, I often get timeouts in the browser and sometimes some pages of the UTM works.

I am using DPI engine and found out, that if I disable DPI entirely, it works perfect, so I looked into the logs:

 

 ,

Theese two tend to show up:

Dropped due to TLS engine error: SESSION_UNKNOWN[5]

Dropped due to TLS engine error: BAD_VERDICT[2]

My profile matches is "Do not encrypt"

 

i am running SFOS 18.0.0 GA-Build339



This thread was automatically locked due to age.
Parents Reply Children