This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
paulocosta
Explorer
a week ago

Https Inspection - Gemini

Hi,

We are experiencing a problem with the HTTPS inspection feature. I enabled a rule with an internal alert for users (UserPortal) to send categorization requests to the AI. All applications are working fine, but when users open Gemini, the browser connection is closed and does not work.

How can we solve this problem?

Preview file
23 KB
Preview file
55 KB
0 Kudos
6 Replies
Don_Paterson
MVP Gold
MVP Gold
a week ago

You have posted this thread in: CloudMates > Products > Cloud Network Security 

 

It looks like like a Harmony Endpoint question and should go in:  Products  > Workspace  > Endpoint

Or maybe: Network & SASE >  Security Gateways if it is a Quantum Security Gateway,

 

 

If you move it to the Endpoint forum space and add some more details about the policy (maybe also a screenshot of the policy) you might get more visibility and help.

 

 

 

0 Kudos
PhoneBoy
Admin
Admin
a week ago
In response to Don_Paterson

Admins have to move posts, and I took care of that 🙂

the_rock
MVP Gold
MVP Gold
a week ago

Can you please translate what error says? Looks like Portugese to me and only things I can speak in that language are thank you and number six lol

Andy

Best,
Andy
0 Kudos
Don_Paterson
MVP Gold
MVP Gold
a week ago
In response to the_rock

Seems to be:

"Secure Connection Failed

An error occurred during a connection to gemini.google.com. PR_END_OF_FILE_ERROR

Error code: PR_END_OF_FILE_ERROR

  • The page you are trying to view cannot be displayed because the authenticity of the received data could not be verified.

  • Please contact the website owners to inform them of this problem.

[Learn more...]

Try again"

 

Could be certificate pinning.

Gemini (Google) uses strict certificate pinning and advanced TLS (often TLS 1.3 + OCSP Must-Staple).

Need to add the URLs or domains to the “Bypass HTTPS Inspection” list.

Or

Browser doesn’t trust the gateway’s CA certificate. The HTTPS Inspection CA was not imported or trusted on the endpoint.

Will be good to know more about the problem.

I think the Endpoint in a screenshot is confusing things a bit. 

the_rock
MVP Gold
MVP Gold
a week ago
In response to Don_Paterson

Makes sense Don...bypass is always logical thing to try.

Andy

Best,
Andy
0 Kudos
PhoneBoy
Admin
Admin
Monday
In response to Don_Paterson

The only way to deal with Certificate Pinning is to bypass HTTPS Inspection for that site/service.
Not sure we have an Updatable Object (likely needed for this) or a list of URLs to bypass.
I do know R82 will handle Certificate Pinned sites much better as it will auto-bypass when this is detected.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events