Does this mean SSL runs over the top off all management TCP/UDP ports? Is every communication, including fetching logs, syncing to secondary MM, SNMP etc, etc. There is a long list of ports at the following URL.
http://www.fw-1.de/aerasec/ng/ports-ng.html When you say SSL between all components including GUI does the encryption differ? SSLCa v SSLCA ASYM? What are the differences between the SSLCa and SSLCA ASYM? Is it perhaps Symmetric 168 DES V Assym 1024?
Do you know of a decent paper on this subject?
Thanks