Chapter 41 SSL Inspection
ZyWALL USG Series User’s Guide
774
Figure 532
Configuration > UTM Profile > SSL Inspection > Exclude List (> Add/Edit)
The following table describes the fields in this screen.
Table 284 Configuration > UTM Profile > SSL Inspection > Exclude List
LABEL
DESCRIPTION
General Settings
Enable Logs for
Exclude List
Click this to create a log for traffic that bypasses SSL Inspection.
Exclude List
Settings
Use this part of the screen to create, edit, or delete items in the SSL Inspection exclusion list.
Add
Click this to create a new entry.
Edit
Select an entry and click this to be able to modify it.
Remove
Select an entry and click this to delete it.
#
This is the entry’s index number in the list.
Exclude List of
Certificate
Identity
SSL traffic to a server to be excluded from SSL Inspection is identified by its certificate. Identify
the certificate in one of the following ways:
• The Common Name (CN) of the certificate. The common name of the certificate can be
created in the
Object > Certificate > My Certificates
screen.
• Type an IPv4 or IPv6 address. For example, type 192.168.1.35, or 2001:7300:3500::1
• Type an IPv4/IPv6 in CIDR notation. For example, type 192.168.1.1/24, or 2001:7300:3500::1/
64
• Type an IPv4/IPv6 address range. For example, type 192.168.1.1-192.168.1.35, or
2001:7300:3500::1-2001:7300:3500::35
• Type an email address. For example, type abc@zyxel.com.tw
• Type a DNS name or a common name (wildcard char: '*', escape char: '\'). Use up to 127
case-insensitive characters (0-9a-zA-Z`~!@#$%^&*()-_=+[]{}\|;:',.<>/?). ‘*’ can be used as
a wildcard to match any string. Use ‘\*’ to indicate a single wildcard character.
Alternatively, to automatically add an entry for existing SSL traffic to a destination server, go to
Monitor > UTM Statistics > SSL Inspection > Certificate Cache List
, select an item and then click
Add to Exclude List
. The item will then appear here.
Apply
Click
Apply
to save your settings to the Zyxel Device.
Reset
Click
Reset
to return to the profile summary page without saving any changes.
Summary of Contents for USG110
Page 27: ...27 PART I User s Guide ...
Page 195: ...195 PART II Technical Reference ...
Page 309: ...Chapter 10 Interfaces ZyWALL USG Series User s Guide 309 ...
Page 313: ...Chapter 10 Interfaces ZyWALL USG Series User s Guide 313 ...
Page 358: ...Chapter 10 Interfaces ZyWALL USG Series User s Guide 358 ...
Page 373: ...Chapter 10 Interfaces ZyWALL USG Series User s Guide 373 ...