topic Re: Inbound HTTPS Inspection with OCSP Stapling in General Topics

Inbound HTTPS Inspection with OCSP Stapling

Juraj_Sakala — Wed, 17 Apr 2019 07:46:54 GMT

Hello mates,

I have one question regarding Certificate Transparency and Inbound HTTPS Inspection. Is it possible to use OCSP Stapling with Inbound HTTPS Inspection?

Thanks for answer

Juraj

Re: Inbound HTTPS Inspection with OCSP Stapling

PhoneBoy — Fri, 19 Apr 2019 12:16:53 GMT

Not sure it’s something we support as, at least on typical web servers, this function has to be explicitly enabled and I’m not aware of a way to do that.

Re: Inbound HTTPS Inspection with OCSP Stapling

Zolo — Sun, 03 Sep 2023 10:01:33 GMT

Hello,

Any new info on this?

Or what was the solution?

Re: Inbound HTTPS Inspection with OCSP Stapling

Blason_R — Sun, 03 Sep 2023 13:25:04 GMT

Nope - you can not do that since checkpoint ReverseProxy CLI does not support such changes. Instead why not you use Reverse Proxy on nginx and perform the changes. I always do that instead of natting the servers on CheckPoint.