https://community.checkpoint.com/t5/Firewall-and-Security-Management/TLS-Logging/m-p/144599#M25089 <P>As we can determine the version without HTTPS Inspection, it should be sufficient to enable the relevant IPS protection.</P> Wed, 23 Mar 2022 15:25:51 GMT PhoneBoy 2022-03-23T15:25:51Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/TLS-Logging/m-p/144596#M25088 <P>Hi All,</P><P>We need to understand how we can capture logs on Checkpoint to see which application is using the TLS1.0 version.</P><P>For now we got the link which asked me to enable the IPS signature in detect mode to capture it.</P><P><A href="https://community.checkpoint.com/t5/Threat-Prevention/How-to-prevent-TLS1-0-traffic-passing-through-gateway-using-IPS/td-p/15019" target="_blank">https://community.checkpoint.com/t5/Threat-Prevention/How-to-prevent-TLS1-0-traffic-passing-through-gateway-using-IPS/td-p/15019</A></P><P>However i need to understand if this requires https inspections is required to get the logs for this signature at all? Or just enabling the signature with the detect mode should be fine? Please suggest.</P><P>Regards,</P><P>Sanjay S</P> Wed, 23 Mar 2022 15:13:59 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/TLS-Logging/m-p/144596#M25088 Sanjay_S 2022-03-23T15:13:59Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/TLS-Logging/m-p/144599#M25089 <P>As we can determine the version without HTTPS Inspection, it should be sufficient to enable the relevant IPS protection.</P> Wed, 23 Mar 2022 15:25:51 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/TLS-Logging/m-p/144599#M25089 PhoneBoy 2022-03-23T15:25:51Z