Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
ramadhas
Explorer

Implied rule allowing external https traffic which need to block

Noticed internet resources are accessing our firewall external interface ip with port 443. These traffics are allowed through implied rule and looking for fix. These gateways are running old gaia version 77.20. 

Unable to find solution on the checkmates, due to this old gaia version and TAC case also not possible. 

Looking for urgent solution

0 Kudos
2 Replies
PhoneBoy
Admin
Admin

You'll probably need to do something like this to change the implied rules: https://community.checkpoint.com/t5/Security-Gateways/How-to-disable-Gaia-access-from-the-Internet/m...
Note that the file you will need to edit will be in the relevant backward compatibility directory on your management rather than $FWDIR/lib.

Or you can create an fw samp rule to block the necessary traffic: https://support.checkpoint.com/results/sk/sk164472 

(1)
ramadhas
Explorer

thank you for the swift response, let me perform above task and update you asap.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events