https://community.checkpoint.com/t5/Spark-Firewall-SMB/SSL-inspection-policy-additional-HTTPS-ports/m-p/66275#M2545 <P>Hello everyone. Recently I started to reorganize rulebase on 1490 appliance with r77.20.87. I decided to turn on ssl inspection, and probe each site/application that I has activated on rulebase previously. Point is that I found some https web sites with non standards ports, by example <A href="https://www4.oxxo.com:9443/facturacionElectronica-web/views/layout/inicio.do" target="_blank">https://www4.oxxo.com:9443/facturacionElectronica-web/views/layout/inicio.do</A>, so I added to "SSL inspection policy - additional HTTPS ports" property in ADVANCED SETTINGS the ports needed ( I has 3 cases with differents ports). My dude is.....is good practice to resolve this cases by modify that property? (SSL inspection policy - additional HTTPS ports). Is there other...and better way to fix this issue?</P><P>&nbsp;</P><P>By advance, thanks for your comments</P> Wed, 30 Oct 2019 19:01:56 GMT LuisSP 2019-10-30T19:01:56Z https://community.checkpoint.com/t5/Spark-Firewall-SMB/SSL-inspection-policy-additional-HTTPS-ports/m-p/66275#M2545 <P>Hello everyone. Recently I started to reorganize rulebase on 1490 appliance with r77.20.87. I decided to turn on ssl inspection, and probe each site/application that I has activated on rulebase previously. Point is that I found some https web sites with non standards ports, by example <A href="https://www4.oxxo.com:9443/facturacionElectronica-web/views/layout/inicio.do" target="_blank">https://www4.oxxo.com:9443/facturacionElectronica-web/views/layout/inicio.do</A>, so I added to "SSL inspection policy - additional HTTPS ports" property in ADVANCED SETTINGS the ports needed ( I has 3 cases with differents ports). My dude is.....is good practice to resolve this cases by modify that property? (SSL inspection policy - additional HTTPS ports). Is there other...and better way to fix this issue?</P><P>&nbsp;</P><P>By advance, thanks for your comments</P> Wed, 30 Oct 2019 19:01:56 GMT https://community.checkpoint.com/t5/Spark-Firewall-SMB/SSL-inspection-policy-additional-HTTPS-ports/m-p/66275#M2545 LuisSP 2019-10-30T19:01:56Z https://community.checkpoint.com/t5/Spark-Firewall-SMB/SSL-inspection-policy-additional-HTTPS-ports/m-p/66301#M2546 <P>Sorry, but i did not understand what your issue is at all !</P> Thu, 31 Oct 2019 08:18:33 GMT https://community.checkpoint.com/t5/Spark-Firewall-SMB/SSL-inspection-policy-additional-HTTPS-ports/m-p/66301#M2546 G_W_Albrecht 2019-10-31T08:18:33Z https://community.checkpoint.com/t5/Spark-Firewall-SMB/SSL-inspection-policy-additional-HTTPS-ports/m-p/66640#M2553 Hi, it's not properly a issue, I want to know if is it good practice to add tcp ports (non standard) to&nbsp;advanced setting named "SSL inspection policy - additional HTTPS ports", because I had the need to add 3 port to such setting, because it is required to access https sites that use ports other than standardized (443). Wed, 06 Nov 2019 00:59:25 GMT https://community.checkpoint.com/t5/Spark-Firewall-SMB/SSL-inspection-policy-additional-HTTPS-ports/m-p/66640#M2553 LuisSP 2019-11-06T00:59:25Z