This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
junior_kakou
Contributor
‎2018-02-22 04:35 AM

bloquer les sites pornographiques (http et https)

I notice that some websites with indiscent content (sex, pornography) can be displayed while "Block inappropriate content" is activated.
so how do you get to blame these contents?

here are the screenshots

I presume that I am new user of checkpoint if it is also possible to have a guide to master a good configuration of the firewall.
thank you

0 Kudos
6 Replies
G_W_Albrecht
Legend Legend
Legend
‎2018-02-22 05:50 AM

Firstly, this should be in SMB and SMP as this is a SMB device shown in screenshot. Second point is that you did configure it correctly, but URL Filtering relies on the CP URL Database that is contacted and the URL treated as defined for the reported category. If an URL is not known or categorized incorrectly, you can report that to CP very easily: Use the URL Categorization Online Tool ! Check Point provides this online tool that allows you to check whether a URL is classified under one of the categories of the URL Filtering Blade. After you check the URL, this tool also allows you to suggest an alternative categorization for the URL.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
junior_kakou
Contributor
‎2018-02-22 08:34 AM
In response to G_W_Albrecht

thank you Günther but the problem is that there are a lot of pornographic sites that happen to pass.
before the update from R77.20.50 to R77.20.70 all sites with indecent content were automatically
blocked. after the update I see that all are no longer

0 Kudos
PhoneBoy
Admin
Admin
‎2018-02-22 03:12 PM
In response to G_W_Albrecht

Agreed, so I moved the post to the correct place Smiley Happy

0 Kudos
Vladimir
Champion
Champion
‎2018-02-22 05:55 AM

If I understood your question correctly, you are asking how to add new sites to be classified and blocked with notification.

It also looks like you are using a small appliance with WebUI.

In this case, the "Block other undesired applications" should be enabled. Click on the "other undesired applications":

and either:

or:

Generally, small appliances with WebUI are seldom used in very complex environments and their policies are fairly simple.

That being said, there is pretty extensive administration guide available for those at:

Check Point 600/700 Appliances R77.20.75 Administration Guide 

Regards,

Vladimir

Vladimir
Champion
Champion
‎2018-02-22 08:39 AM

Have you tried adding "pornography" section in undesired apps?

Pedro_Espindola
Advisor
‎2018-02-23 05:57 AM

What sites are still passing? Do they use HTTPS? Did you turn on HTTPS Categorization or SSL Inspection?

Some nudity sites use shared certificates issued to sites such as cloudfaressl.com. In this case, HTTPS Categorization won't be enough, since it categorizes the site based on the subject of the certificate. You would have to use SSL Inspection for the gateway to be able to see the actual URL and block it.

Check the certificate to see what site it is issue to.

If it does not use HTTPS, proceed as Vladimir suggested.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    In-Person

    Tue 18 Mar 2025 @ 09:30 AM (EET)

    CheckMates Live Greece
    CheckMates Events