TLS Crypto Acceleration
TLS crypto acceleration accelerates the following:
-
TLS/SSL encryption and decryption
-
VPN, including TLS/SSL and IPsec
Supported Hardware
The following hardware models support TLS crypto acceleration:
-
Secure Firewall 3100
-
Secure Firewall 4200
-
Firepower 4100/9300
For information about TLS crypto acceleration support on Firepower 4100/9300 threat defense container instances, see the FXOS Configuration Guide.
TLS crypto acceleration is not supported on any virtual appliances or on any hardware except for the preceding.
Note | For more information about TLS crypto acceleration and the 4100/9300, see the FXOS Configuration Guide. |
Features Not Supported by TLS crypto acceleration
Features not supported by TLS crypto acceleration include the following:
-
Managed devices where threat defense container instance is enabled.
-
If the inspection engine is configured to preserve connections and the inspection engine fails unexpectedly, TLS/SSL traffic is dropped until the engine restarts.
This behavior is controlled by the configure snort preserve-connection {enable | disable} command.