https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/128077#M74743 <P>Hmmm, I assumed HTTPSi is enabled. Wrong assumption <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P> Thu, 26 Aug 2021 08:41:13 GMT _Val_ 2021-08-26T08:41:13Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127966#M74737 <P>Hi</P><P>I want to inspect and drop only a specific URL but when I create a costom application with full URL (eg. <A href="http://www.example.com/test" target="_blank">www.example.com/test</A>) it doesn't inspect packet. If I write down only domain it works (e.g. <A href="http://www.example.com" target="_self">www.example.com</A> ). In URL filtering it works with specific url in list no problem. For business purposes I have to inspect traffic only with specific url and bypass all URLs under same domain. What should I do for it?</P> Wed, 25 Aug 2021 12:29:06 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127966#M74737 ahmeterkol 2021-08-25T12:29:06Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127981#M74738 <P>Is it HTTPSi or URF filtering question, or both? <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span>&nbsp;</P> Wed, 25 Aug 2021 14:15:16 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127981#M74738 _Val_ 2021-08-25T14:15:16Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127983#M74739 <P>There is no problem in URL filtering with specific URL but in HTTPSi if I write full URL it doesn't match. I have to write main domain URL to match the inspection rule.</P> Wed, 25 Aug 2021 14:23:30 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127983#M74739 ahmeterkol 2021-08-25T14:23:30Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127984#M74740 <P>Please show your HTTPS inspection rule you are applying to that application</P> Wed, 25 Aug 2021 14:32:25 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/127984#M74740 _Val_ 2021-08-25T14:32:25Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/128006#M74741 <P>In order to see the the full URL, HTTPS Inspection needs to be performed.<BR />We can see the site being accessed without it (at least up to TLS 1.2).<BR />So it’s not possible to inspect only <A href="http://www.example.com/url" target="_blank">www.example.com/url</A> without inspecting everything else at <A href="http://www.example.com" target="_blank">www.example.com</A>.</P> Wed, 25 Aug 2021 18:17:51 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/128006#M74741 PhoneBoy 2021-08-25T18:17:51Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/128054#M74742 <P>Thanks</P> Thu, 26 Aug 2021 05:46:38 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/128054#M74742 ahmeterkol 2021-08-26T05:46:38Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/128077#M74743 <P>Hmmm, I assumed HTTPSi is enabled. Wrong assumption <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P> Thu, 26 Aug 2021 08:41:13 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-Problem/m-p/128077#M74743 _Val_ 2021-08-26T08:41:13Z