https://community.checkpoint.com/t5/General-Topics/unable-to-block-facebook-posting/m-p/17030#M2851 <HTML><HEAD></HEAD><BODY><P>This should be in <A href="https://community.checkpoint.com/space/2030">General Product Topics</A>‌.</P><P>If you're trying to access <A href="http://www.facebook.com">http://www.facebook.com</A>&nbsp;(note the non HTTPS url), I would expect that to fail only because your browser is enforcing HTTPS (this is what HSTS does) and this should have nothing to do with HTTPS Inspection.</P><P></P><P></P><P>The only reason I can think you may have seen this with an HTTPS URL is you didn't configure the&nbsp;browser with the HTTPS Inspection CA key as being trusted.</P><P>This is required for HTTPS Inspection to work properly&nbsp;and absolutely mandatory to access any site requiring HSTS (like Facebook):&nbsp;<A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106996" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106996">"HTTP Strict Transport Security" (HSTS) header handling in HTTPS Inspection</A>&nbsp;</P><P>Did you do this?</P></BODY></HTML> Thu, 15 Nov 2018 13:19:57 GMT PhoneBoy 2018-11-15T13:19:57Z https://community.checkpoint.com/t5/General-Topics/unable-to-block-facebook-posting/m-p/17029#M2850 <HTML><HEAD></HEAD><BODY><P>Hi</P><P style="padding: 0px; min-height: 8pt;">&nbsp;</P><P>I am unable to block facebook posting. i have enable http inspections .&nbsp; every time I am getting below error while accessing even facebook on client machine.</P><P>NET::ERR_CERT_AUTHORITY_INVALID on client in checkpoint</P><P style="padding: 0px; min-height: 8pt;">&nbsp;</P><P>You cannot visit <A href="http://www.facebook.com/" rel="nofollow"><SPAN style="color: #0066cc; text-decoration: underline;">www.facebook.com</SPAN></A> right now because the website uses HSTS&amp;oq=You cannot visit <A href="http://www.facebook.com/" rel="nofollow"><SPAN style="color: #0066cc; text-decoration: underline;">www.facebook.com</SPAN></A> right now because the website uses HSTS&amp;aqs=chrome..69i57j69i59.1146j0j7&amp;sourceid=chr</P><P style="padding: 0px; min-height: 8pt;">&nbsp;</P><P>Thanks.</P></BODY></HTML> Thu, 15 Nov 2018 12:45:42 GMT https://community.checkpoint.com/t5/General-Topics/unable-to-block-facebook-posting/m-p/17029#M2850 vikas_kapoor 2018-11-15T12:45:42Z https://community.checkpoint.com/t5/General-Topics/unable-to-block-facebook-posting/m-p/17030#M2851 <HTML><HEAD></HEAD><BODY><P>This should be in <A href="https://community.checkpoint.com/space/2030">General Product Topics</A>‌.</P><P>If you're trying to access <A href="http://www.facebook.com">http://www.facebook.com</A>&nbsp;(note the non HTTPS url), I would expect that to fail only because your browser is enforcing HTTPS (this is what HSTS does) and this should have nothing to do with HTTPS Inspection.</P><P></P><P></P><P>The only reason I can think you may have seen this with an HTTPS URL is you didn't configure the&nbsp;browser with the HTTPS Inspection CA key as being trusted.</P><P>This is required for HTTPS Inspection to work properly&nbsp;and absolutely mandatory to access any site requiring HSTS (like Facebook):&nbsp;<A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106996" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk106996">"HTTP Strict Transport Security" (HSTS) header handling in HTTPS Inspection</A>&nbsp;</P><P>Did you do this?</P></BODY></HTML> Thu, 15 Nov 2018 13:19:57 GMT https://community.checkpoint.com/t5/General-Topics/unable-to-block-facebook-posting/m-p/17030#M2851 PhoneBoy 2018-11-15T13:19:57Z