Decrypted SSL traffic is sent to the Copy Port. You have Wireshark running to perform packet captures on the Copy Port. However, Wireshark identifies the captured traffic as being SSL.
By default, Wireshark decodes traffic on TCP-443 as SSL.
When viewing decrypted SSL flows, TCP-443 should be decoded as HTTP. To do this :
1. Select a packet that has TCP-443 as the Source Port or Destination Port.
2. Right click and choose
3. On the
Transport tab, select
Port 443 from the drop-down box, regardless of whether it is Source or Destination.
4. In the right column, choose
HTTP from the list.
Alternatively, if you select a decrypted packet on Wireshark, right-click, and choose
Follow TCP Stream, you will be able to see the contents in cleartext.
Imported Document ID: 000027399
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.