When browsing to a specific HTTPS URL through the SSL Deep Inspection component of Symantec Web Gateway (SWG), the client browser displays a blank page. However, the client browser displays the content of other HTTPS pages.
Previous versions of SWG appliance accepted MD5 and SHA-1 encryption methods. SWG5.2.0 no longer accepts MD5 or SHA-1 encryption methods as supported encryption methods during SSL connections due to the relative weakness of these encryption methods.
To confirm that the connection failure is specific to the encryption handshake
No. Time Source Destination Protocol Info
55 2013-12-16 15:19:19.060863 10.69.121.105 [REMOVED] TCP 28854 > https [SYN] Seq=0 Win=5840 Len=0 MSS=1460 TSV=834203 TSER=0 WS=10
57 2013-12-16 15:19:19.240976 [REMOVED] 10.69.121.105 TCP https > 28854 [SYN, ACK] Seq=0 Ack=1 Win=4140 Len=0 MSS=1380 WS=0 TSV=4240175680 TSER=834203
58 2013-12-16 15:19:19.241006 10.69.121.105 [REMOVED] TCP 28854 > https [ACK] Seq=1 Ack=1 Win=6144 Len=0 TSV=834383 TSER=4240175680
59 2013-12-16 15:19:19.241134 [REMOVED] 10.69.116.136 TLSv1 Client Hello
60 2013-12-16 15:19:19.411070 10.69.116.136 [REMOVED] TLSv1 Alert (Level: Fatal, Description: Handshake Failure)
61 2013-12-16 15:19:19.411098 [REMOVED] 10.69.116.136 TCP 28854 > https [ACK] Seq=118 Ack=8 Win=6144 Len=0 TSV=834553 TSER=4240175861
62 2013-12-16 15:19:19.411103 10.69.116.136 [REMOVED] TCP https > 28854 [FIN, ACK] Seq=8 Ack=118 Win=4257 Len=0 TSV=4240175861 TSER=834383
63 2013-12-16 15:19:19.411174 [REMOVED] 10.69.116.136 TCP 28854 > https [FIN, ACK] Seq=118 Ack=9 Win=6144 Len=0 TSV=834553 TSER=4240175861
65 2013-12-16 15:19:19.616577 10.69.116.136 [REMOVED] TCP https > 28854 [ACK] Seq=9 Ack=119 Win=4257 Len=0 TSV=4240176026 TSER=834553
To create an SSL Intercept Exception