topic Prohibit/Block Identity Agent traffic on connected networks/interfaces. in Firewall and Security Management https://community.checkpoint.com/t5/Firewall-and-Security-Management/Prohibit-Block-Identity-Agent-traffic-on-connected-networks/m-p/149057#M23867 <P>Hello Check Matters,</P><P>&nbsp;</P><P>Is it possible to prohibit or block the Identity Agent from traveling over specific connected networks?</P><P>Apparently it is possible using the "According to the Firewall policy" option, shown in the figure attached to the post.</P><P>Can anyone help me with this question, please? Because I didn't find documentation specifying the use of According to the Firewall Policy.<BR /><BR />IAlves</P> Thu, 19 May 2022 17:19:29 GMT i_alves 2022-05-19T17:19:29Z Prohibit/Block Identity Agent traffic on connected networks/interfaces. https://community.checkpoint.com/t5/Firewall-and-Security-Management/Prohibit-Block-Identity-Agent-traffic-on-connected-networks/m-p/149057#M23867 <P>Hello Check Matters,</P><P>&nbsp;</P><P>Is it possible to prohibit or block the Identity Agent from traveling over specific connected networks?</P><P>Apparently it is possible using the "According to the Firewall policy" option, shown in the figure attached to the post.</P><P>Can anyone help me with this question, please? Because I didn't find documentation specifying the use of According to the Firewall Policy.<BR /><BR />IAlves</P> Thu, 19 May 2022 17:19:29 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Prohibit-Block-Identity-Agent-traffic-on-connected-networks/m-p/149057#M23867 i_alves 2022-05-19T17:19:29Z Re: Prohibit/Block Identity Agent traffic on connected networks/interfaces. https://community.checkpoint.com/t5/Firewall-and-Security-Management/Prohibit-Block-Identity-Agent-traffic-on-connected-networks/m-p/149612#M24012 <P>There are two options, I think:</P> <OL> <LI>"According to the Firewall policy" and configuring firewall rules on the gateway which is running the PDP role, controlling connections to tcp port 443 of the respectives gateway interface. Please take care of other portals running on this gateway on that port.</LI> <LI>Allow the connection of agents, but limits its usefullness by configuring the network setting of your access roles accordingly.</LI> </OL> Fri, 27 May 2022 11:00:07 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Prohibit-Block-Identity-Agent-traffic-on-connected-networks/m-p/149612#M24012 Tobias_Moritz 2022-05-27T11:00:07Z