This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
User-checkpoint
Explorer
‎2020-10-06 02:22 AM

Captive portal access failure using google chrome

Hi Team,

One of the customer environment having R80.30 take 217 distributed architecture. When accessing captive portal via google chrome we are getting error but captive portal can be accessed via other browsers like Firefox or internet explorer. Even if I'm accessing  captive portal URL error persist.

We have identified while accessing captive portal via google chrome, chrome initiates the traffic to gstatic generate_204 page it was blocked by Internet/computer category, once we allow this category captive portal is accessible via chrome browser.

So to access internet user must login to the captive portal but if user wants to access captive portal via chrome that required internet access??😜

Herewith I have attached screenshots as well.

'

Preview file
49 KB
Preview file
33 KB
Preview file
6 KB
0 Kudos
8 Replies
G_W_Albrecht
MVP Silver
MVP Silver
‎2020-10-06 04:24 AM

I would suggest to contact TAC about this !

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Mithu
Contributor
‎2020-10-06 05:06 AM
In response to G_W_Albrecht

I have opened TAC but we are clueless, TAC suggested some adware is running on the machine, but I don't think so. Since this issue persists from most laptops and mobile phones as well.

0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2020-10-06 04:47 AM

Can you confirm if chrome is using the Data saver or Quic options and if those have any bearing on your symptoms?

CCSM R77/R80/ELITE
0 Kudos
Mithu
Contributor
‎2020-10-06 05:01 AM
In response to Chris_Atkinson

Quic protocol is disabled on a browser level, we are facing the same on laptops and mobile phones as well.

Preview file
65 KB
0 Kudos
PhoneBoy
Admin
Admin
‎2020-10-06 08:04 PM

Please show the log card where the gateway is dropping this connection, redacting sensitive details.
I suspect you can create an allow for the specific URL/host being accessed.

0 Kudos
User-checkpoint
Explorer
‎2020-10-06 08:18 PM
In response to PhoneBoy

Herewith I have attached rule base which is created for test PC which is 172.16.30.254 , In the block message We have instructed to users to click here to authenticate, once user click the hyperlink captive portal will open in new tab.

Although if I enabled 4th rule captive portal can be accessible in the meantime some other websites like google can be accessible.

Preview file
57 KB
Preview file
63 KB
Preview file
75 KB
0 Kudos
PhoneBoy
Admin
Admin
‎2020-10-06 09:09 PM
In response to User-checkpoint

That's not the question I asked.
Please show the precise entry in the logs where the page is blocked.
Click on the line in SmartView and bring up the log card.
Based on this we can change Rule 4 so it’s more precise.

0 Kudos
User-checkpoint
Explorer
‎2020-10-06 10:02 PM
In response to PhoneBoy

Herewith I have attached requested traffic log, in the mean time we can see google chrome trying to access URL-  gstatic.com/generate_204

Preview file
47 KB
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events