Can Anybody PLease help me on this How to configure Check Point Security Gateway as HTTP/HTTPS Proxy
Thanks In advance
This is documented here:
How to configure Check Point Security Gateway as HTTP/HTTPS Proxy
from sk "...Transparent - All HTTP traffic on specified ports and interfaces is intercepted and sent to a proxy..."
This means a process runs on the Check Point gateway that acts as a proxy. No 3rd party proxy would be required.
Thanks peter this was a great help....
and excellent work Sergei Shir and the SecureKnowledge Team!
they updated that sk110013!
"...and processed by the Proxy code in the Security Gateway..."
yes but i am not able to view it as m getting this pop up
As a picture typically says more than a thousand words:
Thanks Peter , do i also need to configure any outbound or inbound policy against this..
By checking the box, implied rules are put in place. You need to create rules as you usually would (internal lan > internet > http+https > accept). Take into account that the gateway creates the outbound (proxied) connection from the gateway and requires a DNS to resolve against.
Bothering u again.. When creating a rule shud i select service as http 80, https 443 or http+https proxy 8080
http/https only should be sufficient.
The http-proxy service would allow access to other proxies, which I assume you don't want
what is the diffrence in transparent and non transparent proxy how they behave???
In non-transparent mode, you must explicitly define the gateway as a proxy in the browser (directly or with a proxy.pac file stored on a different webserver). Transparent mode intercepts HTTP traffic on the specified ports and interfaces and sends it through the proxy without explicit configuration on the client side.
in non-transparent mode, the security gateway will break the http/https connection (meaning 2 connections, from client to security gateway, security gateway to http/https web server).
1. my understanding is, in order to intercept the web traffic, the security gateway should listen to tcp/8080. when i login to the gaia os cli expert level, i did not see a listening port at tcp/8080 (netstat -an) or is there other commands to view this?
2. using http/https proxy, the gateway show spawn off a httpd process to intercept web request at tcp/8080. so may i know what is the process name and how to view this process from gaia os cli expert level?
netstat doesn't show it because it's not a process that is listening on that port.
The firewall kernel intercepts the traffic and "folds" it to fwd, which listens on a number of ports (not tcp/8080).
Thanks Dameon for the clarification.
Retrieving data ...