Default SSL/TLS inspection rule missing

Question

Hi there, 
 I recently configured a new XGS3100 active/passive cluster with SFOS 19.5. Everything seemed to be fine, but as I wanted to configure the SSL/TLS inspection (I normally do this as one of the final steps) I realized, that there is missing something. Here is how it looks: 
 and here how it SHOULD look: 
 
 Both firewalls are on 19.5 and I did not see this on any other 19.5 firewall before. Any ideas what could be the issue here? 
 Regards, 
 Kevin

kerobra · Accepted Answer

To add an answer to this one. Support checked the firewall and couldn't find an entry for the rule in the database. Reimage and backup-restore was suggested. Since I was working from home I decided to go factory-defaults first. The rule was present after finishing the first-time setup. I then imported the previously taken backup which ended in the same result as before the factory-reset, the default ssl/tls rule was missing again. 
 I then did the factory-reset one more time and imported a full configuration export file I took before the whole troubleshooting. This way the default rule was present at the end and this is completely fine for me. 
 I could repeat the process with the same results on the second appliance (same results after backup-restore as after config-import). 
 
 So I cannot say why or how it happened, but it seems to be fixed now. 
 Regards, 
 Kevin

Default SSL/TLS inspection rule missing

Top Replies