This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Tiger_QAs
Contributor
‎2021-06-03 12:52 PM

Monitor TLS versions outbound and inbound traffic passing through a gateway

Is there a recommended way to monitor which connections are using TLS1.0 / TLS1.1 / TLS 1.2 ?

Does SSL inspection have to be enabled for TLS traffic analysis ?

Use case: If we have to make TLSv1.2 mandatory we would like to know the current usage of all the versions.

0 Kudos
2 Replies
PhoneBoy
Admin
Admin
‎2021-06-04 09:44 AM

I believe there are IPS signatures for the various TLS versions.
You can enable them in detect mode to see which clients are using them.

0 Kudos
Benedikt_Weissl
Advisor
‎2021-06-07 01:19 AM

Does SSL inspection have to be enabled for TLS traffic analysis ?

No, but you need AppControl. There are predefined Services for TLS1.0 to TLS1.2. I had to manually enable the protocol signature in the advanced tab of the serivce, so check that before installation.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top