This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Prabulingam_N1
Advisor
‎2018-02-28 12:57 AM

Internal Web/App server access

Dear All,

We have a challenge as: 

Internal hosted Application/WebServer .

Public IP is Natted inorder for External people to access internal Application.

1. https://company.com/abc
2. https://company.com/xyz

The above 2 sites were hosted in same server.

---Now we want to allow only 2nd site accessing from outside and want to block 1st site if accessed from outside.

---www.company.com resolves with 1.1.1.1 (example of public IP)

---We are unable to achieve this in Application/URL rule (No MobileAccess Blade used)
Like Source as "ANY, Destination as custom URL (https://company.com/abc) and Action as "BLOCK".

---Cannot used Port based access/block in Firewall since both will use https only.

Any suggestions or help is appreciated.

Regards, Prabulingam.N

0 Kudos
3 Replies
Marco_Valenti
Advisor
‎2018-02-28 01:27 AM

my guess is to have a try with url defined as regex , create a custom category and assign to a list or a single url defined as regex and then add in a block or allow rule

0 Kudos
Norbert_Bohusch
Advisor
‎2018-02-28 12:01 PM

As this is HTTPS the big question is if HTTPS Inspection is enabled for the inbound traffic!

0 Kudos
Prabulingam_N1
Advisor
‎2018-03-08 10:29 PM
In response to Norbert_Bohusch

Dear Marco/Norbert,

TAC has informed that we may not have control on specific Internal web domain since the Application/URL will be for Internal to External.

Thanks for your inputs.

Regards, Prabulingam.N

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events