This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
kb1
Collaborator
‎2020-05-15 12:31 PM

https inspection not working?

So i have this gateway in my topology and it looks like the bypass rule that i created for this particular website that is otherwise being bloked because of it being untrusted (having an untrusted certification) does not work, website is https://access.myfrontier.org

and it just gets rejected inspite of the bypass rule, so am i doing something wrong here or is this just an issue with R80.20?

Gateway details-

Gtwy-2> show version all
Product version Check Point Gaia R80.20
OS build 101
OS kernel version 2.6.18-92cpx86_64
OS edition 64-bit

You can see the logs below-

logs.jpg

Also more info as it gets rejected first and then also gets accepted for some reason, either way i get a connection closed on my browser-

untrusted.PNGaccepted log.PNG

And the error on the browser-

err_connection_closed.PNG

And the bypass rule i created on smartdashboard (where the custom link i created is https://access.myfrontier.org for this website that im trying to byapss)-

rule.PNG

Thanks.

0 Kudos
3 Replies
Wolfgang
Authority
Authority
‎2020-05-15 01:40 PM

HTTPS Traffic is allowed via a normal rule in the access policy, that‘s your „accept“ seen in the log.

HTTPS-inspection-Blade rejects the traffic to the shown website because the certificate chain is not trusted.

Did you allow untrusted certificates ? Can be found in the HTTPS validation pane.

Wolfgang

0 Kudos
kb1
Collaborator
‎2020-05-15 01:48 PM
In response to Wolfgang

Thank you for replying, how do I allow untrusted certificates? Because I haven't done that.
0 Kudos
Wolfgang
Authority
Authority
‎2020-05-17 11:39 PM
In response to kb1

You can configure the handling of untrusted chains and certificates in the HTTPS Validation pane:

https_inspection_.PNG

 

 

 

 

 

 

 

 

 

 

Default is, to allow untrusted certificates.

If the problem exists with the certificate chain, you can import your own CA to the list of Trusted CAs.

Did you update the list of trusted CAs following How to update list of Trusted CA for HTTPS Inspection ?

Wolfgang

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events