When using the SSL certificate inspection method to inspect HTTPS traffic, how does FortiGate filter web requests when the client browser does not provide the server name indication (SNI) extension?

A. FortiGate uses the CN information from the Subject field in the server certificate.
B. FortiGate switches to the full SSL inspection method to decrypt the data.
C. FortiGate uses the requested URL from the user’s web browser.
D. FortiGate blocks the request without any further inspection.
  Discussion forum


Leave an answer