This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
0x41cipher
Participant
‎2024-01-18 02:23 AM

Forcing TLSv1.2 on outbound connections through Check Point SGW

Requirement is to enable TLSv1.2 from a client to server. This can be done locally on the host PC too but I would like to if we can enable to force TLSv1.2 on outbound connections made to a specific server via the SGWs.

Is HTTPS Inspection blade needed for this?

 

Thank you.

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2024-01-18 05:34 PM

Believe you can do it through App Control and/or IPS.

0x41cipher
Participant
‎2024-01-23 09:19 PM
In response to PhoneBoy

I'll try it out.

Thanks.

0 Kudos
SomAustrianCity
Participant
‎2024-01-19 05:10 AM

Hi, IPS has these protections:
Transport Layer Security (TLS) Version 1.0
Transport Layer Security (TLS) Version 1.1
Transport Layer Security (TLS) Version 1.2
Just put 1.0 and 1.1 into prevent mode and all attempty to use these versions will be blocked.

In my tests, these protections worked pretty well, no matter if i also used https inspection or not.

0x41cipher
Participant
‎2024-01-23 09:20 PM
In response to SomAustrianCity

Alright. I'll try it out

Thanks.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events