TechTalk:
New MITRE ATT&CK Extension
CheckMates Go:
MITRE Engenuity ATT&CK Evaluation Part 1
May The Fourth
CloudMates Live Show
The Premiere Event for Transforming Enterprises
to the Hybrid Data Center
Check Point Named in Gartner Market
Guide for Mobile Threat Defense 2021
End of Support Policy Update
For R80.10 Release
Hi,
Using the APP & URL Filtering from R77.30 or R80.10, I can not block HTTPS websites, the Check Point Bypass.
For example, I create a custom App/Sites and add the following site: *.hltv.org
If I type http://www.hltv.org, is block, but If I type https://www.hltv.org it's allowed.
How can I block HTTPS URL?
Thanks.
Kaspars_Zibarts
You need to turn on https inspection to do proper URLF on https. Or you may choose passive filtering based on SSL certificate name:
To enable it, enable the URL Filtering blade:
Go to Application & URL Filtering tab -> Advanced -> Engine Settings -> Enable "Categorize HTTPS sites" and install Security policy
More in sk92743
Kaspars_Zibarts
You need to turn on https inspection to do proper URLF on https. Or you may choose passive filtering based on SSL certificate name:
To enable it, enable the URL Filtering blade:
Go to Application & URL Filtering tab -> Advanced -> Engine Settings -> Enable "Categorize HTTPS sites" and install Security policy
More in sk92743
Hi Kaspars Zibarts,
Thanks for you reply.
I already had this option selected.
Even with this option enabled, https url are not blocked.
Kaspars_Zibarts
Have you seen this one. I haven't tried but I'm guessing the certificate name most likely is not 100% match with URL. If you are not using https inspection, then there will be trade offs.
https://community.checkpoint.com/docs/DOC-2632-urlf-apcl-whitelisting
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY