Create a standard decryption policy with inbound protection

The following task discusses how to create a standard decryption policy to decrypt network traffic coming into your network. You typically do this to decrypt and inspect traffic directed to an internal server. All options on this page are required.

Before you begin

Review what an inbound protection decryption policy means in Incoming traffic decryption.

Procedure

Step 1	Log in to Security Cloud Control if you haven't already done so.
Step 2	Click Firewall.
Step 3	Click Administration > (name of management center).
Step 4	In the right pane, click Management > Policies.
Step 5	Click Create New > Decryption Policy.
Step 6	In the provided fields, enter a Name and optional Description. The following characters are not supported in decryption policy names: Leading period `#`,`;`,`{`,`}`,`=`,`$`,`<`,`>`
Step 7	Click Create Policy.
Step 8	Slide Inbound Decryption to Enabled as the following figure shows.
Step 9	Add the following to your decryption policy: Security zones Internal server details (inbound decryption)