This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Blade
Explorer
‎2020-11-06 02:06 PM

Https inspection fail mode

Outbound Https inspection


If I enable this setting, would I no longer have to create inspection bypass rules in the policy? a single rule to inspect all https traffic to the Internet, if it is not possible to inspect, the https inspection blade automatically bypasses.


What I want to do is decrypt all traffic that can be decrypted by the https inspection blade so that the other threat prevention blades can check the content, if this is not possible for technical limitations instead of creating rules for each site, it is the firewall that makes the decision automatically to let the traffic without decrypting it.


Is my understanding well for this parameter? Or is there another configuration to achieve this goal?

Preview file
4 KB
Preview file
5 KB
0 Kudos
1 Reply
PhoneBoy
Admin
Admin
‎2020-11-06 08:24 PM

The fail mode only applies if the gateway and the remote server can’t agree on ciphers, if client certificate authentication is required, or a handful of other conditions.
Otherwise you still need bypass rules.
If you run R80.40 or R81 gateways and management, you can use Updatable Objects which contain known services that require bypass.
You may still need some bypass rules but this will minimize the work required.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events