This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
gilyazovamir
Explorer
‎2025-02-18 02:25 AM

Updatable blocklists from web-server

Hello Mates!

 

There is a gateway 77.30, a management server 81.20 and a web server on the LAN with text lists: MD5, SHA1, SHA256, url, domain, hostname. These lists are periodically updated. Is it possible to configure blocking on the gateway based on these lists?

As I understand functions like Custom Intelligence Feeds, Network Feeds do not work on 77.30 gateways?

0 Kudos
5 Replies
Ruan_Kotze
Advisor
‎2025-02-18 03:33 AM

Hi,

Your understanding is correct, network feeds, custom intelligence feeds and data center objects are not supported in 77.30.  I'm sure you're well aware but 77.30 also not supported anymore.

Cheers,
Ruan

0 Kudos
Tal_Paz-Fridman
Employee
Employee
‎2025-02-18 04:19 AM

As @Ruan_Kotze correctly wrote, IOC Feeds and Network Feeds work with current versions like R81.20 and R82:

https://support.checkpoint.com/results/sk/sk132193

https://sc1.checkpoint.com/documents/R81.20/WebAdminGuides/EN/CP_R81.20_SecurityManagement_AdminGuid... 

 

R77.30 has reached End of Support in September 2019 so upgrade would be advised for many important reasons:

https://www.checkpoint.com/support-services/support-life-cycle-policy/#software-support

 

0 Kudos
gilyazovamir
Explorer
‎2025-02-18 04:45 AM
In response to Tal_Paz-Fridman

Thank you, mates!

So I guess there is no other option to block something by lists on 77.30?

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2025-02-18 04:53 AM
In response to gilyazovamir

Please, do not mention R77.30 - does the customer really have support for this version that is out of support for more than 4 years now ? And does he still get the sevices like IPS, AM, AV etc. ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
PhoneBoy
Admin
Admin
‎2025-02-18 01:45 PM

Even if you could configure R77.30 to block based on one of these lists, you would need to run HTTPS Inspection to block these items effectively.
While HTTPS Inspection does work in R77.30, it lacks SNI support and support for modern TLS ciphers.
Bottom line: upgrade the R77.30 gateway to a supported release.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top