- Products
- Learn
- Local User Groups
- Partners
- More
On-Premise SD-WAN Management
Register HereWhat's New in R82.10?
Watch Here AI Security Masters E8:
Claude Mythos: New Era in Cyber Security
CheckMates Go:
The Moment Before
Hello guys
For some testing and debugging , I am trying to bypass everything on "deploy.static.akamaitechnologies.com".
Made a custom app like this :
Then made a HTTPS bypass rule on my outbound Policy and added it to the bypass.
This rule is right at the top as rule number 4 but when I look on the firewall logs I still see the "a95-100-154-113.deploy.static.akamaitechnologies.com (95.100.154.113)" is inspected ?
Why ? What I am doing wrong ? ... I'm out of ideas.
in my opinion, but I accept to be proven wrong, the issue is related to the certificate used by those sites, could you try using domain object?
Hello
Because deploy.static.akamaitechnologies.com is a reverse DNS record, but you are creating a URL definition for the bypass. For this specific log you can define the bypass by creating a domain/FQDN object or if it is an accessed URL you can create the definition by specifying that URL.
TK
in my opinion, but I accept to be proven wrong, the issue is related to the certificate used by those sites, could you try using domain object?
Seems so , I added the destination as Domain ".deploy.static.akamaitechnologies.com" and this solved the issue.
And I came to same conclusion when I saw that some host onm akamaitechnologies.com was classified as "m365cdn.nel.measure.office.net" and some other host came just as IP.
Thanks.
Hello
Because deploy.static.akamaitechnologies.com is a reverse DNS record, but you are creating a URL definition for the bypass. For this specific log you can define the bypass by creating a domain/FQDN object or if it is an accessed URL you can create the definition by specifying that URL.
TK
Well , well , well...
Did not help 😞
I can see HTTPS inspection on a95-100-155-104.deploy.static.akamaitechnologies.com (95.100.155.104)
I defined my rule like :
Source : Any
Destination : Domain .deploy.static.akamaitechnologies.com
Services : HTTPS Default services (https , 8080 )
Action Bypass
And I still get traffic inspected ?
Will test now. Btw this SK is GOLD for me in regards to domo_reverse_lookup ... think I found another solution for a problem that I had for LONG time 🙂
Will update you tomorrow.
Leaderboard
Epsum factorial non deposit quid pro quo hic escorol.
| User | Count |
|---|---|
| 12 | |
| 5 | |
| 4 | |
| 3 | |
| 3 | |
| 2 | |
| 2 | |
| 1 | |
| 1 | |
| 1 |
Tue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityThu 30 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E12: READY OR NOT: Securing the AI Enterprise 4/5 - AI GatewayThu 20 Aug 2026 @ 10:00 AM (PDT)
AI Security Masters E13: READY OR NOT: Securing the AI Ent 5/5 - AI Research & Threat LandscapeTue 14 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E11: READY OR NOT: Securing the AI Enterprise 3/5 - AI Workforce SecurityThu 30 Jul 2026 @ 10:00 AM (PDT)
AI Security Masters E12: READY OR NOT: Securing the AI Enterprise 4/5 - AI GatewayThu 20 Aug 2026 @ 10:00 AM (PDT)
AI Security Masters E13: READY OR NOT: Securing the AI Ent 5/5 - AI Research & Threat LandscapeAbout CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY