# set shared ssl-decrypt ssl-exclude-cert *.bankofamerica.com *.bankofamerica.com *.ycharts.com *.ycharts.com <value> SSL Decryption Exclusion entry name
可以启用/禁用预定义项, 以便使用:
# set shared ssl-decrypt disabled-ssl-exclude-cert-from-predefined [Start a list of values].
预先定义的测试命令,用于测试网站上的排除列表 firewall
test ssl-exclude-list
> predefined Test hostname in predefined SSL Exclude list
> shared Test hostname in shared SSL Exclude list
> vsys Test hostname in vsys SSL Exclude list
Additional Information
解密排除中的主机名 SSL 对案例敏感。 请查看以下示例:
PA-3060(active)> test ssl-exclude-list predefined hostname whatsapp.net
Hostname 'whatsapp.net' is excluded from decryption
PA-3060(active)> test ssl-exclude-list predefined hostname Whatsapp.net
Hostname 'Whatsapp.net' is not excluded from decryption
PA-3060(active)>