Re: Specific URL block or allow

ANANTADSULE · ‎2025-06-20

Dear All,
Device details as follows.
1550 Appliance
R81.10.17 (996004620)

Locally Managed

Firewall is set to standard firewall mode with HTTPS inspection and App,URL filterling enabled and I'm trying to block specific url using manual rule but not be able to block it and it's accesible.
Access policy structure as follows.
RUle 1,2,3,4 are SMP cloud rules for other source and destination.'

Rule No 5(Top Manual rule)
Source-192.168.1.97(SGNSB)
Destination-Internet
Application/Services-JIO(tried both-https://*.jio.com and https://www.jio.com)
Action-Block
Log-Log
Rule 6 is for other source and destination working as expected.
Rule 7,8,9 are default rule created by Checkpoint for Standard firewall mode(Untouched)

Please help me to understand the access policy workflow and exact issue with the rule.

Approach is to allow specific urls/applications only.
screenshots attached herewith for your reference.

the_rock · ‎2025-06-20

Can you send the log you see about it?

Andy

ANANTADSULE · ‎2025-06-24

Have a look at logs.

Same rule but two different action Block and Reject.

I have removed the financial category from SSL bypass,but still same issue if there is any concern.

the_rock · ‎2025-06-24

I would check with TAC support on this.

Andy

Chris_Atkinson · ‎2025-06-20

Is it accessible from different browser flavours, is it still accessible on successive / subsequent attempts?

QUIC Protocol & URL Categorization mode - Background vs Hold could be potential factors.

CCSM R77/R80/ELITE

ANANTADSULE · ‎2025-06-20

I've updated same rule with following changes and now it's reacting differently.

added two urls- 1)*jio.com getting proper block message now 2)*rbi.org.in getting "This site can’t be reached

" instead of block message.

Screenshot attached for reference. (JIO.jpeg,RBI.jpeg)

the_rock · ‎2025-06-23

So its working partially now?

Andy

ANANTADSULE · ‎2025-06-23

Yes

Are you a member of CheckMates?

Specific URL block or allow