Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
0x41cipher
Participant

Forcing TLSv1.2 on outbound connections through Check Point SGW

Requirement is to enable TLSv1.2 from a client to server. This can be done locally on the host PC too but I would like to if we can enable to force TLSv1.2 on outbound connections made to a specific server via the SGWs.

Is HTTPS Inspection blade needed for this?

 

Thank you.

0 Kudos
4 Replies
PhoneBoy
Admin
Admin

Believe you can do it through App Control and/or IPS.

0x41cipher
Participant

I'll try it out.

Thanks.

0 Kudos
SomAustrianCity
Participant

Hi, IPS has these protections:
Transport Layer Security (TLS) Version 1.0
Transport Layer Security (TLS) Version 1.1
Transport Layer Security (TLS) Version 1.2
Just put 1.0 and 1.1 into prevent mode and all attempty to use these versions will be blocked.

In my tests, these protections worked pretty well, no matter if i also used https inspection or not.

0x41cipher
Participant

Alright. I'll try it out

Thanks.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events