My HTTPS signing CA cert was due to expire in the next 30 days so I regenerated the cert: Web Protection / Filtering Options / HTTPS CAs / Regenerate
After doing this internal hosts were not able to retrieve the new cert from http://passthrough.fw-notify.net/cacert.pem, connections time out
I have done the following but nothing resolves the issue:
1) Uploaded the original cert to the UTM
2) Didn't find any clues in the logs
3) Regenerated another new cert
5) Waited overnight for some magic to happen... ;-}
At this point I'm stumped and am looking for help to resolve this.