Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Lockout888
Explorer

Need Capsule Connect, but close unnecessary ports?

Hi, running R80.40 and need to use an iPhone for VPN access.

I configured the IPSec VPN and Mobile Access blades, Capsule Connect option only etc.

Capsule Connect seems to be working correctly, and can access resources.

Now I am receiving Implied Rule "Accept" connections and IPS Prevent logs on the WAN.

GRC Shields Up scan shows ports 80 & 443 are open to the Internet, and 444 and 500 are as closed. All other ports are stealth.

I would rather close (preferably stealth) any ports that are not needed for Capsule Connect.

How can I accomplish this?

 

0 Kudos
1 Reply
PhoneBoy
Admin
Admin

See the following SK:
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 
It may have other implications, including break Visitor Mode for Remote Access VPN and not allow other people to add your site to their VPN client.

0 Kudos