Hi
With 6.0.3 we can't reach https://www.adobe.com with Chrome 73.0.3683.103 through Deep Inspection profile, even we exempt *.adobe.com from Deep Inspection. We have no problems at all with other Browsers as IE or FF, the exemption works and we get the origin Adobe certificate, but with Chrome we always get the "ERR_SPDY_PROTOCOL_ERROR". As soon as we change the policy SSL inspection mode from Deep Inspection to Certificate Inspection, also Chrome is able to reach the website.
So it's definitely related to Deep Inspection, but only with Chrome. Same also without any other Security Profiles on the Policy, so no influence from Web- or Application Filter.
In the Analyzer logs we can only see the traffic is getting through in this session, nothing else what would guide us into any direction.
As far as I know this SPDY is a own protocol from Google to speed up traffic, but it looks like somehow the FG is having it's difficulties with this protocol.
Anyone else has seen such a behavior?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1712 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.