A network administrator notices that users cannot access HTTPS websites after enabling SSL inspection. The firewall policy allows the traffic, and the certificate is trusted on the clients. What is the most likely cause?
Trap 1: The client's browser has a proxy configured incorrectly.
This would affect all traffic, not just HTTPS.
Trap 2: The firewall policy has SSL inspection disabled.
The policy allows traffic, so SSL inspection is likely enabled.
Trap 3: The DNS server is not resolving the domain names.
DNS issues would prevent connection, but the symptom is specific to HTTPS.
- A
The CA certificate used for SSL inspection is not trusted by the clients.
If the CA certificate is not trusted, clients will block HTTPS connections.
- B
The client's browser has a proxy configured incorrectly.
Why wrong: This would affect all traffic, not just HTTPS.
- C
The firewall policy has SSL inspection disabled.
Why wrong: The policy allows traffic, so SSL inspection is likely enabled.
- D
The DNS server is not resolving the domain names.
Why wrong: DNS issues would prevent connection, but the symptom is specific to HTTPS.