Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
quatloo
Explorer

Control access to web sites by host name header

Jump to solution

Hello,

Is it possible to have my security gateway (R80.30) control access inbound access from the Internet to an internal web site by using its host name header? My goal is to have different firewall access policies for different websites. All the websites will point to the same Internet-facing IP address and the web server will serve up the appropriate website depending on the host name header. Here is an example:

website1.company.com (DNS A record 1.1.1.1) |-->CheckPointGW-->Load Balancer-->Backend web server
website2.company.com (DNS A record 1.1.1.1) |---------^

I am using HTTPS inspection so I would think that the host name header would be exposed and available to be evaluated.

CheckPoint support suggested using a domain object but that doesn't seem right to me.

Thanks for any insights on how to accomplish this!

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

Create a Custom Application/Site for each one?

View solution in original post

0 Kudos
2 Replies
PhoneBoy
Admin
Admin

Create a Custom Application/Site for each one?

View solution in original post

0 Kudos
quatloo
Explorer

That was the exact solution to my problem.  Thanks!!

0 Kudos