Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
Encrypted Traffic Filteri...

Encrypted Traffic Filteriring vs Ssl Decryption of Url Filtering.

Created: Apr 2, 2022 22:44:03Latest reply: Apr 3, 2022 12:50:41 178 5 0 0 0
  Rewarded HiCoins: 0 (problem resolved)
View the author 1#

Hello everyone,


For url filtering ,It is done in 2 ways. I did it practically in 2 examples. I installed the number 1 on computers.


1) SSL Encrypted traffic detection( Decryption https traffic)

 Since it will do decrypt first, it will tire the Firewall.But it gives more accurate results


2)SSL encrypted traffic detection(Blocking https traffic)

blocks incoming https requests based on the url pre-defined that matches the rules

But false positive ?

 3)Encrypted Traffic Filtering of Url Filtering


 It does not tire the firewall,  but not good results based on url filtering

(The place where it is activated is “Filter Encrypted traffic” in “Url Filtering”.)


I want to block some of the predefined categories without missing any (15-16 predefined category)

There are 200 clients.. I want FW not to get tired..


Which one is the right one to apply. How is it done in al lot of  organizations?



Which one should I apply to the predefined categories that I will block?

For example, why would I decrypt a malicious websites?


networkhuawei

Like (0) Dislike (0) Favorite(0) Share Report
Previous: TechKnow Sharing [Datacom • Issue 1]
Next: Different output of snmp
Featured Answers

Best answer

Recommended answer

(2) (0)
fuzi_yao
Admin Created Apr 3, 2022 02:05:15

Hi, friend! If you want to filter out certain HTTPS sites, but don't want to consume firewall performance, you might choose to use method two.
View more
  • x
  • convention:

user_4237671
user_4237671 Created Apr 3, 2022 02:28:39 (0) (0)
 
PanchakS
PanchakS Created Apr 3, 2022 12:50:35 (0) (0)
good  
All Answers
(0) (0)
2#
liqiang185
liqiang185 Admin Created Apr 3, 2022 01:23:25

Dear friend!
Please rest assured that we'll be back with an answer shortly.
View more
  • x
  • convention:
(2) (0)
3#
fuzi_yao
fuzi_yao Admin Created Apr 3, 2022 02:05:15

Hi, friend! If you want to filter out certain HTTPS sites, but don't want to consume firewall performance, you might choose to use method two.
View more
  • x
  • convention:

user_4237671
user_4237671 Created Apr 3, 2022 02:28:39 (0) (0)
 
PanchakS
PanchakS Created Apr 3, 2022 12:50:35 (0) (0)
good  
(0) (0)
4#
PanchakS
PanchakS Created Apr 3, 2022 12:50:41

Encrypted Traffic Filteriring vs Ssl Decryption of Url Filtering.-4835559-1
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.