- Products
- Learn
- Local User Groups
- Partners
-
More
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
IDC Spotlight -
Uplevel The SOC
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi all,
I'm using a captive portal for unauthenticated users. This seems to be working just fine, however the customer want to exclude specific site from the captive portal and user do not need to be identified at all.
What I did is create a rule above the one with the captive portal and allowed http/https to the specific domains. I'm also using https inspection on the GW.
I've created a network group with several domain objects in it. These domain objects are configured like so:
".example.com". However when I try to access the website I get mixed results. At first it seems to be working and I cannot access other sites then the sites I've allowed, however after a few minutes I can suddenly access all other internet sites without being redirected to the captive portal.
I don't understand why this is happening.
I've solved this issue. It turns out I had 2 separate issues.
When using the domain object the gateways got really slow, CPU was going through the roof.
I deleted the domain objects and everything returned to normal.
About how I solved the captive portal exclusions, I simply created a custom application category and created custom websites for the exclusions, added them to the newly created category and excluded the category on the appliction and URL filtering blade before the rule where I redirect to the captive portal.
I've solved this issue. It turns out I had 2 separate issues.
When using the domain object the gateways got really slow, CPU was going through the roof.
I deleted the domain objects and everything returned to normal.
About how I solved the captive portal exclusions, I simply created a custom application category and created custom websites for the exclusions, added them to the newly created category and excluded the category on the appliction and URL filtering blade before the rule where I redirect to the captive portal.
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY