Re: SSL Read-Only Inspection Questions
Okay let's define "readonly", that is a non-modify pre-can profile. It uses "
"Fortinet_CA_SSL" by default? It does deep-inspection.
If you are doing deep inspection that means, you are inspecting and removing SSL/TLS to inspect. If you are doing "certificate" your only inspecting SSL/TLS hand-shakes?
So what are you using? Does it sound like deep inspection? Also check for any SSL-exceptions "
PCNSE, NSE , Forcepoint , StrongSwan Specialist