URLフィルタでブロック設定をしても、ブラウザにブロックのエラーが表示されず、特定のブラウザエラー（ERR_CONNECTION_RESET）が表示されます。なぜですか。

SSL復号ができないサイトや、URLフィルタブロック設定でブロック表示が行われないサイトは、SSL復号例外設定サイトに該当すると考えられます。
SSL復号できない理由については、以下のサイトをご参照ください。

SSL復号設定しても、復号化されないサイトがあります。なぜですか。

復号化例外対象サイトについては、以下の通りです。

*.whatsapp.net
kdc.uas.aol.com
bos.oscar.aol.com
*.agni.lindenlab.com
*.service.paloaltonetworks.com
*.threatvault.paloaltonetworks.com
*.onepagecrm.com
update.microsoft.com
*.update.microsoft.com
activation.sls.microsoft.com
Yuuguu.com
yuuguu.com
*.PacketiX VPN
*.SoftEther VPN
*.softether.com
*.tpncs.simplifymedia.net
tpnxmpp.simplifymedia.net
*.table14.fr
*.gotomeeting.com
*.live.citrixonline.com
*.mozilla.org
lr.live.net
anywhere2.telus.com
accounts.mesh.com
storage.mesh.com
*.sharpcast.com
auth2.triongames.com
*.zumodrive.com
*.urlcloud.paloaltonetworks.com
*.wildfire.paloaltonetworks.com
*.telex.cc
*.icloud.com
*.onlive.com
*.wetransfer.com
mweston4
www.rooms.hp.com
novafusion.ea.com
fesl.ea.com
courier.push.apple.com
courier.sandbox.push.apple.com
*.courier.sandbox.push.apple.com
*.pgiconnect.com
sap.mymeetingroom.com
*.logmein.com
*.*.logmein.com
*.itwin.com
notify.mql5.com
updates.metaquotes.net
*.vudu.com
login.kaseya.net
*.one.ubuntu.com
*.cloudmosa.com
*.las.citrixonline.com
*.sjc.citrixonline.com
*.ord.citrixonline.com
*.iad.citrixonline.com
authentication.citrixonline.com
*.osdimg.com
*.ams.citrixonline.com
g2m.egw.citrixonline.com
g2ac.egw.citrixonline.com
*.servers.citrixonline.com
*.fra.citrixonline.com
*.atl.citrixonline.com
*.las2b.citrixonline.com
*.launch.gotowebinar.com
*.citrixonlinecdn.com
*.itunes.apple.com
itunes.apple.com
*.airddroid.com
portal.aws.amazon.com
connectivity.amazonworkspaces.com
DyLogic - Mirial Carrier Server
nds.norton.com
www.nortonzone.com
zpi.nortonzone.com
login.norton.com
*.bitdefender.com
*.bitdefender.net
*.pathviewcloud.com
secure.logmeinrescue.com
*.rooms.hp.com
secure.hp-ww.com
*.line.naver.jp
*.line-apps.com
*.gc.apple.com
*.wdcdn.net
*.wiredrive.com
meetfinch.com
*.usefinch.com
*.vagrantcloud.com
appguru.com
*.silentcircle.com
*.silentcircle.net
www.tumblr.com
ecure.echosign.com
eFolder.eFolder Repository
*.securewebportal.net
*.mzstatic.com
*.dropcam.com
www.origin.com
*.postlm.com
*.postls.com
two.postls.com
*.ntrsupport.com
crypto.cat
AnyNet Relay
AnyDesk Client
*.periscope.tv
owner-api.teslamotors.com
*.dochub.com
*.meerkatapp.co
*.informaticaondemand.com
*.informaticacloud.com
*.logentries.com
webrootcloudav.com
cloud.webroot.com
*.ess.apple.com
gsa.apple.com
gsas.apple.com
sso.8x8.com
vm.8x8.com
discordapp.com
*.whispersystems.org
*.snapchat.com
*.wbx2.com
*.ciscospark.com
*.mobile.yandex.net
*.agent.datadog.com
events-sjc.egnyte.com
avl-egnyte-auth-service.egnyte.com
*.kakao.com
*.wire.com
*.xhoot.com
*.tresorit.com
Tresorit Global Device
*.vortex-win.data.microsoft.com
SevilleCloudGateway-PRD.trafficmanager.net
mobile.surveymonkey.com
*.acompli.net
*.coinbase.com
*.ol.epicgames.com
*.cellcrypt.com
*.lc.prod.us.cs.paloaltonetworks.com
in.lc.prod.us.cs.paloaltonetworks.com
api.lc.prod.us.cs.paloaltonetworks.com
lic.lc.prod.us.cs.paloaltonetworks.com
*.lc.prod.eu.cs.paloaltonetworks.com
in.lc.prod.eu.cs.paloaltonetworks.com
api.lc.prod.eu.cs.paloaltonetworks.com
lic.lc.prod.eu.cs.paloaltonetworks.com
apitrusted.paloaltonetworks.com
static.dns.service.paloaltonetworks.com
io.dns.service.paloaltonetworks.com
dns.service.paloaltonetworks.com
*.gpcloudservice.com
api.assembla.com
latinum.amazon.com
pindorama.amazon.com
idmsa.apple.com
*.ls.apple.com
api.music.apple.com
home.nest.com
*.production.nest.com
*.smartthings.com
*.api.smartthings.com
*.chat.snapchat.com
*.sonarcloud.io
*.pingidentity.com
*.sonos.com
*.ws.sonos.com
*.radiotime.com
smp-device.apple.com
arlo.netgear.com
my.arlo.com
ocapi.arlo.com
*.api.snapchat.com
cf-st.sc-cdn.net
*.iot.services-edge.paloaltonetworks.com
certificatetrusted.paloaltonetworks.com
certificate.paloaltonetworks.com
*.samsungcloudsolution.com
api-m.paypal.com
*.us.cdl.paloaltonetworks.com
*.nl.cdl.paloaltonetworks.com
*.uk.cdl.paloaltonetworks.com
api.keybase.io
keybase.io
tlu.dl.delivery.mp.microsoft.com
*.tlu.dl.delivery.mp.microsoft.com
*.dl.delivery.mp.microsoft.com
*.delivery.mp.microsoft.com
ksn.kaspersky.com
albert.apple.com
captive.apple.com
gs.apple.com
humb.apple.com
static.ips.apple.com
sq-device.apple.com
tbsc.apple.com
time-ios.apple.com
time.apple.com
time-macos.apple.com
*.push.apple.com
gdmf.apple.com
deviceenrollment.apple.com
deviceservices-external.apple.com
identity.apple.com
iprofiles.apple.com
mdmenrollment.apple.com
setup.icloud.com
vpp.itunes.apple.com
*.school.apple.com
ws-ee-maidsvc.icloud.com
*.business.apple.com.
isu.apple.com
appldnld.apple.com
configuration.apple.com
gg.apple.com
gnf-mdn.apple.com
gnf-mr.apple.com
ig.apple.com
mesu.apple.com
ns.itunes.apple.com
oscdn.apple.com
osrecovery.apple.com
skl.apple.com
swcdn.apple.com
swdist.apple.com
swdownload.apple.com
swpost.apple.com
swscan.apple.com
updates-http.cdn-apple.com
updates.cdn-apple.com
xp.apple.com
*.apps.apple.com
ppq.apple.com
lcdn-registration.apple.com
serverstatus.apple.com
*.appattest.apple.com
fba.apple.com
cssubmissions.apple.com
bpapi.apple.com
diagassets.apple.com
doh.dns.apple.com
crl.apple.com
crl.entrust.net
crl3.digicert.com
crl4.digicert.com
ocsp.apple.com
ocsp.digicert.com
ocsp.entrust.net
ocsp.verisign.net
valid.apple.com
*.voovmeeting.com
dt.proxy.voovmeeting.com
*.wemeet.tencent.com
*.bip.com
*.tvoip.turkcell.com.tr
kcs.ace.tpcloud.paloaltonetworks.com
config.psynet.gg
*.rlpp.psynet.gg
cdn.signal.org
cdn2.signal.org
*.hawkeye.services-edge.paloaltonetworks.com
urlcat.eu.hawkeye.services-edge.paloaltonetworks.com
urlcat.us.hawkeye.services-edge.paloaltonetworks.com
urlcat.apac.hawkeye.services-edge.paloaltonetworks.com
dlp.uk.hawkeye.services-edge.paloaltonetworks.com
api.cloudflareclient.com
engage.cloudflareclient.com
*.epm.panclouddev.com
*.epm.pancloud.com
*.epm.prismaaccess.com
*.bzflag.org
identity-broker.services-edge.paloaltonetworks.com
*.identity-broker.services-edge.paloaltonetworks.com
identity.services-edge.paloaltonetworks.com
*.identity.services-edge.paloaltonetworks.com
kcs.ace-fh.tp-gov.paloaltonetworks.com
dlp.gov-hawkeye.services-edge.paloaltonetworks.com
dlp.stg-gov-hawkeye.services-edge.paloaltonetworks.com
gov-hawkeye.services-edge.paloaltonetworks.com
stg-gov-hawkeye.services-edge.paloaltonetworks.com
enforcer.gov-hawkeye.services-edge.paloaltonetworks.com
enforcer.stg-gov-hawkeye.services-edge.paloaltonetworks.com
urlcat.gov-hawkeye.services-edge.paloaltonetworks.com
urlcat.stg-gov-hawkeye.services-edge.paloaltonetworks.com
ace.gov-hawkeye.services-edge.paloaltonetworks.com
ace.stg-gov-hawkeye.services-edge.paloaltonetworks.com
gov-iot.services-edge.paloaltonetworks.com
stg-gov-iot.services-edge.paloaltonetworks.com
enforcer.gov-iot.services-edge.paloaltonetworks.com
enforcer.stg-gov-iot.services-edge.paloaltonetworks.com
*.tools.panclouddev.com
*.api.prismaaccess.com