I'm experiencing some strange behaviour. I have setup https inspection, in addition I've added a rule to bypass https inspection for financial services and health.
When I go to a website from a bank for example I still get the CP certificate, however when I revisit the same site it shows me the official certificate and the rule is working.
This is also true for the health sites.
So first time visit is CP certificate, second time is official cert like I would expect.
Is this normal behaviour or am I missing something?