SD killing HTTPS connection

[K2Technologies]

People within my network are attempting to get to a website from Wells Fargo. The connections are getting blocked by SD but I do not fully understand why. From that, I cannot create a work around to this issue.

Can anyone help me decipher the following log entry:

Number: 567715
Date: 3Apr2007
Time: 8:52:50
Product: SmartDefense
Interface: eth2
Origin: Cheyenne (172.24.1.15)
Type: Log
Action: Drop
Protocol: tcp
Service: https (443)
Source: 172.16.1.13
Destination: wellsfargo.com (209.84.206.42)
Source Port: 1629
Attack Name: Invalid SSL Packet
Attack Information: Too many open connections


Thank you.

[melipla]

Quote:

Originally Posted by K2Technologies

Attack Name: Invalid SSL Packet
Attack Information: Too many open connections

Sounds like you have multiple people accessing this website at once...does it work when only one person does it?

Wish there was a reference as to which smart defense alert triggered the log entry...

[K2Technologies]

The "too many open connections" has to be a misnomer; the site worked before we upgraded to R60 (from R55) and still works from any location not going through our FW1 gateway....

[melipla]

You updated SD after you upgraded? Otherwise disable all your Smart Defense and see which one [if any] is causing the problem..? I don't bank there so I can't try it.