Found it!!
in norton 360 goto security > advanced > browser protection
then set HTTPS scanning to disabled.
Then it works!
Note: it would be great if Norton would allow a list of escapes (192.168.1.1 for me) and allow https scanning to continue for other addresses