Palo Alto Networks Knowledgebase: SSL Decryption Not Working due to Unsupported Cipher Suites
SSL Decryption Not Working due to Unsupported Cipher Suites
Created On 02/08/19 00:05 AM - Last Updated 02/08/19 00:05 AM
With Inbound SSL decryption, after the required configuration and import of all required certificates, the inbound SSL decryption is not working on the web server.
Similarly when using SSL Forward Proxy, sessions are either not getting decrypted and continue to show as application"ssl", or connections are not allowed through as application "ssl" and are instead being interrupted.
Check out the following compatibility matrix to see which cipher suites are supported according to PAN-OS release and feature or function :