HTTPS is already enabled and blocking https malware, I tested it. I tried disabling it and got the exact same result. It is back on.
It has been enabled and working beautifully with central management since R77.30 + Addon and then R80.
I've noticed some differences when upgrading to R80.10.
- In R80, when some scope (network or host) was not explicitly defined for inspection or bypass in the https inspection rulebase it was NOT inspected.
- After upgrading to R80.10, I had to explicitly set the bypass for those networks or they would be inspected.
I have not found documentation that explains the differences.
Most of the network IS inspected, including the machine I am using to test, obviously.
CPU/Memory is not an issue. The number of users and throughput is much lower than supported by the appliance. Memory is usually at 40% at most. CPU is usually at 10%.