On a XG(S) Firewall the default exception rule "Legacy HTTPS Exceptions" is not in regex notation.
Example: When you enable this rule, not only dropbox.com is not decrypted, but also for example secure-dropbox.com
People with bad ideas can register such domain names and traffic will not be scanned.
In my opinion this read only rule "Legacy HTTPS Exceptions" should be rewriten in regex notation as soon as possible.
This thread was automatically locked due to age.