Hello,
Seems it`s been a while since you posted this, I am actually having the same issue...Yet the biggest issue is not that ProxySG is blocking traffic of weak ciphers, but also ProxySG is blocking the Exchange server OWA Web Connectivity...Insane
Looking for an answer as well.
Thnx,
Rigels SIno
Original Message:
Sent: 03-18-2020 10:48 AM
From: Mahmoud Nouman
Subject: Server validation when SG is integrated with SSLv
Hello,
We have ProxySG integrated with SSLv in a Proxy mode segment of type Active Inline, and the proxy is an explicit one. For the traffic which SSLv is intercepting, can we still use the server validation policies from ProxySG or SSLv is taking over? Also if we are setting up a policy to reject traffic of weak ciphers and similar on the SSLv; would there be a way of displaying a Proxy Exception page instead of "The proxy server is refusing connections" error being displayed by the browser? Just to keep users informed that the connection was not allowed intentionally.
SGOS: 6.7.5.1
SSLv: 4.5.3.1