- Products
- Learn
- Local User Groups
- Partners
- More
What's New in R82.10?
Watch HereWhen the Agents Attack
A Live Look at Agentic Exposure Validation
AI Security Masters E8:
Claude Mythos: New Era in Cyber Security
CheckMates Go:
CheckMates Fest
Trying to block:
https://www.virtualbox.org/wiki/Downloads
Using R80.10, HTTPS Inspection is enabled. I can block the domain but I need to block the "Downloads". Every custom app rule I make never hits o this URL, I don't think I am getting the syntax right for the "regular expression". Any help will be greatly appreciated.
Did you make a custom application/site object under application policy to block it?
You can't block a specific HTTPS URL unless HTTPS Inspection is enabled.
And if you're using HTTPS Inspection, it's highly recommended you be on a more current release.
Well just because of that I spun up an R80.40 release and HTTPS inspection enabled. Same problem, the rule never gets hit. I've checked the regex expression and it appears to be right. If I missed something please let me know. Screenshots are attached.
Try not backslashing the forward slashes in your URL.
@Roger_Boyle did you try using a native URL without regular expressions?
Also, in this specific case Dameon is correct, HTTPSi should be enabled.
So I tested your request on my lab and I couldn't do the exact page. I was able to do the homepage and even with HTTPS enabled it will not work. Regex didn't solve it,
Using your logic of not allowing users to download from Virtualbox.org but not block the page, you can use Content awareness. Build a custom app for the URL (virtualbox.org*) and use content aware to not allow download of ANY file. Set the action to block and that would allow access to the page but not to download anything from the site.
Is it possible to block a particular page? I thought firewalls can inspect up to domain level (URL) not gradual inspection like whole URI, this was the information provided by TAC engineer when I open a SR for a similar requirement!!
If your goal is to prevent downloads from virtualbox.org, using Content Awareness is probably the right answer as it should catch it regardless of the URL.
If you have a requirement to block a specific URL on a specific site, HTTPS Inspection is enabled, and it's not working correctly, please engage with the TAC.
Leaderboard
Epsum factorial non deposit quid pro quo hic escorol.
| User | Count |
|---|---|
| 66 | |
| 23 | |
| 7 | |
| 6 | |
| 4 | |
| 4 | |
| 4 | |
| 3 | |
| 3 | |
| 3 |
Tue 07 Jul 2026 @ 05:00 AM (IDT)
Check Point Cloud Firewall – The Cloud Firewall with near 100% Zero-Day Prevention Build In (SEAK)Thu 09 Jul 2026 @ 10:00 AM (CEST)
Schutz souveräner Workloads: Check Point & die AWS European Sovereign CloudThu 09 Jul 2026 @ 11:00 AM (CEST)
The Cloud Architects Series: Check Point Edge Protection SD-WAN & SASEThu 09 Jul 2026 @ 11:00 AM (EDT)
Tips and Tricks 2026 #9 - What's New with Check Point Email SecurityFri 10 Jul 2026 @ 11:00 AM (IDT)
CheckMates Live Netherlands - Sessie 48: Nieuwe Check Point Workspace SecurityTue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityTue 07 Jul 2026 @ 05:00 AM (IDT)
Check Point Cloud Firewall – The Cloud Firewall with near 100% Zero-Day Prevention Build In (SEAK)Thu 09 Jul 2026 @ 11:00 AM (EDT)
Tips and Tricks 2026 #9 - What's New with Check Point Email SecurityFri 10 Jul 2026 @ 11:00 AM (IDT)
CheckMates Live Netherlands - Sessie 48: Nieuwe Check Point Workspace SecurityTue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityThu 30 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E12: READY OR NOT: Securing the AI Enterprise 4/5 - AI GatewayThu 20 Aug 2026 @ 10:00 AM (PDT)
AI Security Masters E13: READY OR NOT: Securing the AI Ent 5/5 - AI Research & Threat LandscapeAbout CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY