SSL interception on the perimeter device tasked with protecting your network is esstional to the overall effectiveness of your investment. WIthout crtical configuration many of the features available on your firewall are rendered useless due to the encryption employed by the threat actor. To combat this, modern enterprise class firewalls are capable of performing Man In The Middle interception of egress and ingress traffic to inspect for malious code.

To properly leverage SSL inspection proper due dilligence must performed to ensure an appropriately sized firewall to handle the significant processing burden of the encryption/decryption processes, a properly configured certificate, a mechansim to propegate the certficate to all endpoints in the environment and a well defined whitelisting mechansim to reduce potential for interupted servcies.