https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32948#M6880 <HTML><HEAD></HEAD><BODY><P>my guess is to have a try with url defined as regex , create a custom category and assign to a list or a single url defined as regex and then add in a block or allow rule </P></BODY></HTML> Wed, 28 Feb 2018 09:27:52 GMT Marco_Valenti 2018-02-28T09:27:52Z https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32947#M6879 <HTML><HEAD></HEAD><BODY><P>Dear All,</P><P>We have a challenge as:&nbsp;</P><P>Internal hosted Application/WebServer .</P><P>Public IP is Natted inorder for External people to access internal Application.</P><P></P><P><SPAN>1. </SPAN><A class="jive-link-external-small" href="https://company.com/abc" rel="nofollow">https://company.com/abc</A><BR /><SPAN>2. </SPAN><A class="jive-link-external-small" href="https://company.com/xyz" rel="nofollow">https://company.com/xyz</A></P><P>The above 2 sites were hosted in same server.</P><P></P><P>---Now we want to allow only 2nd site accessing from outside and want to block 1st site if accessed from outside.</P><P>---www.company.com resolves with 1.1.1.1 (example of public IP)</P><P>---We are unable to achieve this in Application/URL rule (No MobileAccess Blade used)<BR /><SPAN>Like Source as "ANY, Destination as custom URL (</SPAN><A class="jive-link-external-small" href="https://company.com/abc" rel="nofollow">https://company.com/abc</A><SPAN>) and Action as "BLOCK".</SPAN></P><P>---Cannot used Port based access/block in Firewall since both will use https only.</P><P></P><P>Any suggestions or help is appreciated.</P><P></P><P></P><P>Regards, Prabulingam.N</P></BODY></HTML> Wed, 28 Feb 2018 08:57:39 GMT https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32947#M6879 Prabulingam_N1 2018-02-28T08:57:39Z https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32948#M6880 <HTML><HEAD></HEAD><BODY><P>my guess is to have a try with url defined as regex , create a custom category and assign to a list or a single url defined as regex and then add in a block or allow rule </P></BODY></HTML> Wed, 28 Feb 2018 09:27:52 GMT https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32948#M6880 Marco_Valenti 2018-02-28T09:27:52Z https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32949#M6881 <HTML><HEAD></HEAD><BODY><P class="">As this is HTTPS the big question is if HTTPS Inspection is enabled for the inbound traffic!</P></BODY></HTML> Wed, 28 Feb 2018 20:01:27 GMT https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32949#M6881 Norbert_Bohusch 2018-02-28T20:01:27Z https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32950#M6882 <HTML><HEAD></HEAD><BODY><P>Dear Marco/Norbert,</P><P></P><P>TAC has informed that we may not have control on specific Internal web domain since the Application/URL will be for Internal to External.</P><P></P><P>Thanks for your inputs.</P><P></P><P>Regards, Prabulingam.N</P></BODY></HTML> Fri, 09 Mar 2018 06:29:38 GMT https://community.checkpoint.com/t5/General-Topics/Internal-Web-App-server-access/m-p/32950#M6882 Prabulingam_N1 2018-03-09T06:29:38Z