Hi,
is it possible to have different SSL versions for the client-proxy connection and proxy-OCS connection?
For example, if we had a client application which only supports TLS1.0 and goes out through the proxy, in a forward proxy scenario, could we tell the proxy to then secure that connection on the internet side, by upgrading the proxy-OCS connection to a TLS1.2?
As we are speaking about 2 different connections, this should be possible.
As far as I can tell, the only thing the proxy can do at the moment is forward the client's version to the OCS.
The SGOS Administrator manual states:
"Note:
The SSL proxy, also known as the SSL forward proxy, uses parameters taken from the SSL connection made by the client when originating SSL connections to the server. As a result, settings in the default SSL client profile are not applied to these connections."
I couldn't find any document describing an over-write of the client chosen SSL version.
Is there a way to achieve this, and, if not, are there any future plans to add that feature?
Thank you.