Hey Check Point team and community,
we set up our http(s)-proxy on our clusterXL. Now we have the following problem:
One of our endpoints wants to download crl-lists via ldap. He connects with the proxy-service on the checkpoint and gets dropped.
We added an access-role with service/application "Certificate Revocation List" and even added port tcp/389 to the application but the rule doesn´t get a hit.
A further rule with ldap in service/application-column doesn´t get a hit. just the drop rule matches.
How can I get this to work?
Thanks and best regards