Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
bhill3
Explorer

Enabling TLS 1.3 for All Gateway Interfaces

We are trying to ensure that TLS 1.3 is enabled on our Checkpoint Gateways and have successfully configured the primary interface of the Gateways to have TLS 1.3 enabled (as well as disable TLS 1.0 & TLS 1.1) by using the following clish commands:

show ssl tls enabled
set ssl tls TLSv1.0 off  # repeat as needed with other TLS versions
set ssl tls TLSv1.3 on
save config

This seems to have only applied to the primary interface of the Gateway. Is there a way that we can also ensure that TLS 1.3 is enabled for the secondary interface of the Gateway? Specifically we're looking to enable TLS 1.3 for port 443.

Thanks!

0 Kudos
2 Replies
Lesley
Leader Leader
Leader

https://support.checkpoint.com/results/sk/sk178505

-------
If you like this post please give a thumbs up(kudo)! 🙂
0 Kudos
the_rock
Legend
Legend

From expert mode -> cipher_util, option 2, then 2 again, follow the prompts.

Best,

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events