https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-vs-Categorize-HTTPS-site-with-VSX-R80-40/m-p/96246#M8764 <P>Hi Heiko,</P><P>Thank you.</P><P>Based on <A href="https://community.checkpoint.com/t5/Next-Generation-Firewall/Is-both-HTTPS-Inspection-and-Categorize-HTTPS-Websites-supported/m-p/55362#M560" target="_blank">https://community.checkpoint.com/t5/Next-Generation-Firewall/Is-both-HTTPS-Inspection-and-Categorize-HTTPS-Websites-supported/m-p/55362#M560</A></P><P>As Categorization of HTTPS is a global parameter all the VS will have categorization enabled. And on the ones I will activate HTTPSi, only HTTPSi will be performed?</P><P>&nbsp;</P><P>Is that correct?</P><P>regards</P> Tue, 08 Sep 2020 06:33:36 GMT DR_74 2020-09-08T06:33:36Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-vs-Categorize-HTTPS-site-with-VSX-R80-40/m-p/96225#M8762 <P>Hello,</P><P>I have a question regarding HTTPSi / HTTPS Categorization / VSX on R80.40.</P><P>Well, I have several VS, and I would like to know if it is possible to run HTTPSi on some of them in order to inspect for malware etc... and run only HTTPS Categorization in order to webfilter a VS dedicated to guest (where I can not add any Cert on th browser).</P><P>I read this post which partially answer my concerns</P><P><A href="https://community.checkpoint.com/t5/Next-Generation-Firewall/Is-both-HTTPS-Inspection-and-Categorize-HTTPS-Websites-supported/m-p/55121" target="_blank">https://community.checkpoint.com/t5/Next-Generation-Firewall/Is-both-HTTPS-Inspection-and-Categorize-HTTPS-Websites-supported/m-p/55121</A></P><P>But don't know if I can run both on R80.40 with different VS</P><P>&nbsp;</P><P>Thanks</P><P>&nbsp;</P><P>&nbsp;</P> Mon, 07 Sep 2020 15:50:04 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-vs-Categorize-HTTPS-site-with-VSX-R80-40/m-p/96225#M8762 DR_74 2020-09-07T15:50:04Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-vs-Categorize-HTTPS-site-with-VSX-R80-40/m-p/96228#M8763 <P>Hi <a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/6975">@DR_74</a>,</P> <P>To your questions:</P> <P>Yes, you can enable or disable https inspection on different VS.</P> <P>But you must import the root certificate in the browser. Unfortunately there is no other possibility.</P> Mon, 07 Sep 2020 16:09:01 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-vs-Categorize-HTTPS-site-with-VSX-R80-40/m-p/96228#M8763 HeikoAnkenbrand 2020-09-07T16:09:01Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-vs-Categorize-HTTPS-site-with-VSX-R80-40/m-p/96246#M8764 <P>Hi Heiko,</P><P>Thank you.</P><P>Based on <A href="https://community.checkpoint.com/t5/Next-Generation-Firewall/Is-both-HTTPS-Inspection-and-Categorize-HTTPS-Websites-supported/m-p/55362#M560" target="_blank">https://community.checkpoint.com/t5/Next-Generation-Firewall/Is-both-HTTPS-Inspection-and-Categorize-HTTPS-Websites-supported/m-p/55362#M560</A></P><P>As Categorization of HTTPS is a global parameter all the VS will have categorization enabled. And on the ones I will activate HTTPSi, only HTTPSi will be performed?</P><P>&nbsp;</P><P>Is that correct?</P><P>regards</P> Tue, 08 Sep 2020 06:33:36 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/HTTPS-Inspection-vs-Categorize-HTTPS-site-with-VSX-R80-40/m-p/96246#M8764 DR_74 2020-09-08T06:33:36Z