This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
earomero
Participant
‎2024-11-28 06:37 AM

Allow png, jpg.

Good morning from Argentina, I hope you are well.
In my governmental CNV organization, I cannot allow the download of .jpg and .png files.
I attach the error and the policies that I implemented to allow jpg and png.
I can download the office files.

Muchas gracias, saludos!

 

 

 

 

 

deny jpg.jpg
Preview file
22 KB
policy allow.jpg
Preview file
42 KB
0 Kudos
21 Replies
the_rock
Legend
Legend
‎2024-11-28 07:10 AM

Greetings from Canada! I have to say, Argentina is pretty cool country and in my opinion, BEST meat dishes in the world : - )

Anywho, I believe below is what you need, but will check with one of my colleagues.

Andy

 

 

Screenshot_1.png

 

0 Kudos
the_rock
Legend
Legend
‎2024-11-28 07:17 AM

Saludos again! I think this must be it.

Andy

 

Screenshot_1.png

0 Kudos
earomero
Participant
‎2024-11-28 08:46 AM
In response to the_rock

Hello, thank you very much for your reply. We do have some very tasty meats, thank you!

I have the .jpg and .png exclusions activated and I cannot download those types of files. Ideally, they should not be excluded, but rather sanitized and returned clean.
The current policy shown in the photo would not impact my organization. What can I do?

Saludos!

allow extension.jpg
Preview file
36 KB
0 Kudos
the_rock
Legend
Legend
‎2024-11-28 09:07 AM
In response to earomero

That looks right to me. Sorry mate, Im not really endpoint furu, so would probably verify with TAC as well. lets see if anyone else may know.

Andy

0 Kudos
AdiGH
Employee
Employee
‎2024-11-28 11:21 AM

Hey @earomero,
You will need to configure this here:

 

 

chrome_KlVgnkE4x1.png
Preview file
136 KB
0 Kudos
the_rock
Legend
Legend
‎2024-11-28 11:29 AM
In response to AdiGH

Just checked client environment, dont see that option there...

Andy

0 Kudos
AdiGH
Employee
Employee
‎2024-11-28 11:33 AM
In response to the_rock

Cloud or on-prem? if this is cloud, can you share a screenshot of the configuration available under 'download protection' in Advanced Settings?

0 Kudos
the_rock
Legend
Legend
‎2024-11-28 11:38 AM
In response to AdiGH

This is cloud.

See below, unless Im looking at the wrong setting?

Andy

 

 

Screenshot_1.png

 

0 Kudos
AdiGH
Employee
Employee
‎2024-11-28 11:44 AM
In response to the_rock

You are in a different view, we usually call it 'split mode' which is mostly common to tenants migrating from on-prem. 

In any case, can you take a look under 'Threat Emulation' advanced settings? 

0 Kudos
the_rock
Legend
Legend
‎2024-11-28 11:48 AM
In response to AdiGH

Yup, see below. I see override action is available under threat emulation...I reckon that has to be it? 🙂

Andy

 

Screenshot_1.png

 

0 Kudos
the_rock
Legend
Legend
‎2024-11-28 12:28 PM
In response to AdiGH

Cool, thank you! Lets see if thats same setting @earomero needs.

I more asked, just being curious : - )

Andy

0 Kudos
earomero
Participant
‎2024-11-29 08:11 AM
In response to AdiGH

Hello, greetings from Argentina, thank you very much for answering.
Yes, it does indeed work! However, this configuration is a bypass to the checkpoint agent. There is a way for .jpg and .png files to go through the agent and be sanitized. The objective is not to bypass checkpoint but to use it as a means to secure the environment.
Thank you very much, greetings!

the_rock
Legend
Legend
‎2024-11-29 08:14 AM
In response to earomero

Hey @earomero 

Lets wait for @AdiGH to confirm, as its weekend already in Israel, so she may not reply until Sunday.

Best,

Andy

0 Kudos
earomero
Participant
‎2024-12-03 04:18 AM
In response to the_rock

Hi! Ok, I'm waiting for your reply.

Gracias!!

0 Kudos
the_rock
Legend
Legend
‎2024-12-02 11:13 AM

Hey @earomero 

Were you able to figure this out?

Andy

0 Kudos
earomero
Participant
‎2024-12-03 04:22 AM
In response to the_rock

Hi, the recommendation you gave me is very good, however it is to allow unsupported files, creating a bypass in the checkpoint agent.
The objective is to allow .jpg and have them analyzed and sanitized by the checkpoint agent. It is difficult hahaha but not impossible, there must be a way to achieve it.
Greetings from Argentina!

the_rock
Legend
Legend
‎2024-12-03 04:23 AM
In response to earomero

Did you open TAC case yet?

Andy

0 Kudos
earomero
Participant
‎2024-12-03 04:36 AM
In response to the_rock

What is a TAC case? How can I open it?

0 Kudos
the_rock
Legend
Legend
‎2024-12-03 05:09 AM
In response to earomero

https://help.checkpoint.com

You need to have user center account or if someone else in your company does, they can open it for you. However, if you are an end user and have CP reseller, you can certainly ask them to open a case on your behalf.

Andy

0 Kudos
AdiGH
Employee
Employee
‎2024-12-03 05:09 AM
In response to earomero

Please reach out via feedback button in the UI, and I'll explain what can be done. 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top