On-device Network Protection's MitM protection will now provide prevention, not just detection and a user warning.
This feature enables users to keep working securely without requiring them to change networks during Man-in-the-Middle attacks.
This feature is available on request. Please contact Check Point Support or your account manager to enable this feature.
When a MitM attack is detected, the SandBlast Mobile Protect app will move from the loopback VPN to a remote VPN tunnel terminated in the SandBlast Mobile Cloud so that your traffic is protected within the IPSec VPN tunnel.
Once the feature is enabled in the SandBlast Mobile Dashboard, the Administrator can configure MitM Prevention by navigating to Policy > [Policy Profile] > WIFI Network, and turning MITM Attack Prevention ON and setting the Risk Level and Device Alert setting.
This topic is related to Network dashboard tab (Man-in-the-middle attacks).