Google uses Elliptic Curve (EC) X25519 for the ECDHE cipher, which is used in Google Chrome version 50. As a result, since May 10 2016, SSL connections to Google services that use this type of certificate fail when Chrome doesn’t have the ALPN extension.
A fix for this issue is anticipated in SGOS version 22.214.171.124. For SGOS version 6.5 branches, a fixed is anticipated in SGOS version 126.96.36.199.
To work around this issue, the SSL Proxy service must be disabled for the googlevideo.com domain.
For explicit deployments add the following local policy:
For transparent deployments, the server ip addresses will have to be added to the static bypass list or create TCP-Tunnel type services for these IP addresses specifically. As IP addresses vary by region, verify the IP addresses that your local DNS server resolves googlevideo.com to and add them to the static bypass list or tunnel policy.
Imported Document ID: 000031293
Subscribing will provide email updates when this Article is updated. Login is required.