OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: compunction on September 06, 2017, 08:20:22 pm

Title: SSL inspection fails for some sites
Post by: compunction on September 06, 2017, 08:20:22 pm: I am trying to setup SSL inspection for a few machines on my network. I setup Squid in transparent mode with port forward. I am able to get to https://www.yahoo.com without issue but if I try to get to https://opnsense.org I get the following error in the cache.log.

2017/09/06 14:13:08 kid1| Error negotiating SSL connection on FD 26: error:140A1175:SSL routines:ssl_bytes_to_cipher_list:inappropriate fallback (1/-1)

I am using an internal CA and I have imported the certificate into the browsers trusted root.

Any idea's?

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy