Forward Decrypted SSL Traffic for WildFire Analysis

Enable the firewall to forward decrypted SSL traffic for WildFire analysis. Traffic that the firewall decrypts is evaluated against security policy rules; if it matches the WildFire analysis profile attached to the security rule, the decrypted traffic is forwarded for WildFire analysis before the firewall re-encrypts it. Only a super user can enable this option.
Forwarding decrypted SSL traffic for WildFire analysis is a WildFire best practice.
  • On a firewall that does not have multiple virtual systems enabled:
    1. If you have not already, enable the firewall to perform decryption and Forward Files for WildFire Analysis.
    2. Select DeviceSetupContent-ID.
    3. Edit the Content-ID settings and Allow Forwarding of Decrypted Content.
    4. Click OK to save the changes.
  • On a firewall with virtual systems enabled:
    1. If you have not already, enable decryption and Forward Files for WildFire Analysis.
    2. Select DeviceVirtual Systems, click the virtual system you want to modify, and Allow Forwarding of Decrypted Content.

Related Documentation