Forward Decrypted SSL Traffic for WildFire Analysis

Enable the firewall to forward decrypted SSL traffic for WildFire analysis. Traffic that the firewall decrypts is evaluated against security policy rules; if it matches the WildFire analysis profile attached to the security rule, the decrypted traffic is forwarded for WildFire analysis before the firewall re-encrypts it. Only a super user can enable this option.
Forwarding decrypted SSL traffic for WildFire analysis is a WildFire best practice.
  • On a firewall that does not have multiple virtual systems enabled:
    1. If you have not already, enable the firewall to perform decryption and Forward Files for WildFire Analysis.
    2. Select
      Device
      Setup
      Content-ID
      .
    3. Edit the Content-ID settings and
      Allow Forwarding of Decrypted Content
      .
    4. Click
      OK
      to save the changes.
  • On a firewall with virtual systems enabled:
    1. If you have not already, enable decryption and Forward Files for WildFire Analysis.
    2. Select
      Device
      Virtual Systems
      , click the virtual system you want to modify, and
      Allow Forwarding of Decrypted Content
      .

Related Documentation