This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ahmeterkol
Participant
‎2021-08-25 05:29 AM
Jump to solution

HTTPS Inspection Problem

Hi

I want to inspect and drop only a specific URL but when I create a costom application with full URL (eg. www.example.com/test) it doesn't inspect packet. If I write down only domain it works (e.g. www.example.com ). In URL filtering it works with specific url in list no problem. For business purposes I have to inspect traffic only with specific url and bypass all URLs under same domain. What should I do for it?

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2021-08-25 11:17 AM
Jump to solution

In order to see the the full URL, HTTPS Inspection needs to be performed.
We can see the site being accessed without it (at least up to TLS 1.2).
So it’s not possible to inspect only www.example.com/url without inspecting everything else at www.example.com.

View solution in original post

6 Replies
_Val_
Admin
Admin
‎2021-08-25 07:15 AM
Jump to solution

Is it HTTPSi or URF filtering question, or both? 🙂 

0 Kudos
ahmeterkol
Participant
‎2021-08-25 07:23 AM
In response to _Val_
Jump to solution

There is no problem in URL filtering with specific URL but in HTTPSi if I write full URL it doesn't match. I have to write main domain URL to match the inspection rule.

0 Kudos
_Val_
Admin
Admin
‎2021-08-25 07:32 AM
In response to ahmeterkol
Jump to solution

Please show your HTTPS inspection rule you are applying to that application

0 Kudos
PhoneBoy
Admin
Admin
‎2021-08-25 11:17 AM
Jump to solution

In order to see the the full URL, HTTPS Inspection needs to be performed.
We can see the site being accessed without it (at least up to TLS 1.2).
So it’s not possible to inspect only www.example.com/url without inspecting everything else at www.example.com.

ahmeterkol
Participant
‎2021-08-25 10:46 PM
In response to PhoneBoy
Jump to solution

Thanks

0 Kudos
_Val_
Admin
Admin
‎2021-08-26 01:41 AM
In response to PhoneBoy
Jump to solution

Hmmm, I assumed HTTPSi is enabled. Wrong assumption 🙂

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events