Wondering if anyone can offer some input on Sonicwall DPI-SSL issue.
Firmware: 6.5.2.2-44n (We have an upgrade scheduled for this week to get us patched on 6.5.4.4-44n)
Many sites are simply not working with DPI-SSL. The browser (chrome) just displays a "Connection Reset" error. In IE i get an error saying attempt to turn on TLS 1.0, 1.1, 1.2 or an unsupported cyper is used.
In the DPI-SSL connection failure screen i see the following (on every site with this issue)
Server handshake error-error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
- The certificate seems fine. Its 2048 length, SHA256RSA, showing as trusted in certificate snap-in.
- Sonicwalls (useless) support just pointed me to this page:https://www.sonicwall.com/support/knowledge-base/dpi-ssl-troubleshooting/170505454091338/- Worthless - makes no...