Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

FWSM and SSL

How to configure the FWSM so that it only supports SSL 3.0 and not SSL 2.0 which has many security vulnerabilities.

I guess FWSM/PIX/ASA supports SSL/TLS.

Thanks.

1 REPLY
Hall of Fame Super Blue

Re: FWSM and SSL

Hi

As far as i know you can't do this on the FWSM. SSL v3.0 and SSL v2.0 will both use port 443 and that is the only control you have on the FWSM. There is no "fixup" specifically for HTTPS which means the FWSM does not have an any application aware code for the version of https being used.

Basicaly you need to ensure that you are not running v2.0 SSL on any of your servers if you are concerned with the security vulnerabilities.

HTH

Jon

248
Views
0
Helpful
1
Replies
CreatePlease to create content