Hello CheckMates,

This short video is part of the hands-on videos refreshing knowledge based on R82 JHF 25 posted here.
This video covers ...

Inbound HTTPS inspection (2min 47sec)

• Introduction
• Sequence of policies matching
• Access Control rule
• Inbound NAT rule
• Threat Prevention Rule
• Logging

You may find these OpenSSL commands useful to create a PKCS#12 container of the server certificate you need to import in SmartConsole and install on the firewall:

LinuxServer:~$ sudo openssl pkcs12 -export \
-out ./servercert.p12 \
-inkey /etc/letsencrypt/live/<FQDN>/privkey.pem \
-in /etc/letsencrypt/live/<FQDN>/cert.pem \
-certfile /etc/letsencrypt/live/<FQDN>/fullchain.pem
Enter Export Password:
Verifying - Enter Export Password:
LinuxServer:~$ ls -ltr
-rw------- 1 root root 5843 Oct 17 14:32 servercert.p12

Make sure to make the file accessible to copy it to a place where you can access it from SmartConsole for importing it.

LinuxServer:~$ sudo chmod o+r servercert.p12
LinuxServer:~$ ls -ltr
-rw----r-- 1 root root 5843 Oct 17 14:32 servercert.p12

Greetings 

pelmer