- Products
- Learn
- Local User Groups
- Partners
-
More
Celebrate the New Year
With CheckMates!
Value of Security
Vendor Self-Awareness
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
Mobile Security
Buyer's Guide Out Now
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi guys,
We used to configure "standard rules" for gateways, something like this:
Source | Destination | Application | Service | Action | Comment |
---|---|---|---|---|---|
This GW | Internet | Any | NTP | allow | |
This GW | Internet | Any | DNS | allow | |
This GW | Internet | Any | ICMP | allow | |
This GW | Internet | Any | HTTP(S) | allow |
The goal was to allow the gateway to set up connections for the update service, license service, etc.
Now I tried the connections withous these rules above and it worked without any problems.
I'd like to know:
Are there any implied rules on the SMB appliances, which allow the gateway to connect to the update service, get time updates, etc?
Are there any possibilities to display them?
Thank you.
Best Regards
Severin Dellsperger
I suggest you take a look at this:
https://community.checkpoint.com/docs/DOC-2807-changing-impliedrulesdef-on-locally-managed-smbs
I suggest you take a look at this:
https://community.checkpoint.com/docs/DOC-2807-changing-impliedrulesdef-on-locally-managed-smbs
This is what I searched for
Unfortunately I couldn't find any definition for NTP.
Does someone know, where to find the implied NTP rule?
I checked how it is in centrally managed appliances and there is the following rule:
Perhaps there is similar one when locally managed, not explicitly for NTP?
Yes it could be, thanks for help
NTP (UDP 123) is not listed explicitly in implied_rules.def - but if you look inside the file you will see rather complex macros that generate the implied rule base. Just as an addition, we also have this one here: sk119497: Implied rules are generated but not displayed in the Implied Rules view.
Thanks for the info, as long as it works it's fine for me.
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY