topic Can we block exe download for specific networks only without using HTTPS inspection in CP R80.20? in Firewall and Security Management https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47407#M58044 <P>Hi Everybody,</P><P>We just tried to block exe download for specific user/network by enabling content awareness and through using it in the access policy as shown in screenshot attached herewith. But it is not working.</P><P>Is HTTPS Inspection mandatory for this one?</P><P>We have used standalone firewall with Gaia OS R80.20.</P><P>&nbsp;</P><P>With Regards,</P><P>Bishal Upadhyay&nbsp;</P> Mon, 18 Mar 2019 10:40:28 GMT Bishal_Upadhyay 2019-03-18T10:40:28Z Can we block exe download for specific networks only without using HTTPS inspection in CP R80.20? https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47407#M58044 <P>Hi Everybody,</P><P>We just tried to block exe download for specific user/network by enabling content awareness and through using it in the access policy as shown in screenshot attached herewith. But it is not working.</P><P>Is HTTPS Inspection mandatory for this one?</P><P>We have used standalone firewall with Gaia OS R80.20.</P><P>&nbsp;</P><P>With Regards,</P><P>Bishal Upadhyay&nbsp;</P> Mon, 18 Mar 2019 10:40:28 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47407#M58044 Bishal_Upadhyay 2019-03-18T10:40:28Z Re: Can we block exe download for specific networks only without using HTTPS inspection in CP R80.20 https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47414#M58045 <P>Yes,&nbsp;<SPAN>HTTPS Inspection is mandatory for this task if you want to block .exe files for HTTPS websites. Content Awareness does not look into HTTPS streams itself.</SPAN></P> Mon, 18 Mar 2019 10:51:30 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47414#M58045 Danny 2019-03-18T10:51:30Z Re: Can we block exe download for specific networks only without using HTTPS inspection in CP R80.20 https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47440#M58046 <P>Hi Danny,&nbsp;</P><P>Thanks for the reply. I will keep that in mind.</P> Mon, 18 Mar 2019 12:45:03 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47440#M58046 Bishal_Upadhyay 2019-03-18T12:45:03Z Re: Can we block exe download for specific networks only without using HTTPS inspection in CP R80.20 https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47473#M58047 Why did you post this in SMB Appliances and SMP ? Mon, 18 Mar 2019 15:03:05 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47473#M58047 G_W_Albrecht 2019-03-18T15:03:05Z Re: Can we block exe download for specific networks only without using HTTPS inspection in CP R80.20 https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47585#M58048 Sorry my bad Tue, 19 Mar 2019 08:34:05 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Can-we-block-exe-download-for-specific-networks-only-without/m-p/47585#M58048 Bishal_Upadhyay 2019-03-19T08:34:05Z