- Products
- Learn
- Local User Groups
- Partners
- More
Check Point Jump-Start Online Training
Now Available on CheckMates for Beginners!
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
ZTNA Buyer’s Guide
Zero Trust essentials for your most valuable assets
The SMB Cyber Master
Boost your knowledge on Quantum Spark SMB gateways!
Check Point's Cyber Park is Now Open
Let the Games Begin!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hi,
Check Point FW-1 R81.10.
I am in the process of implementing application rules to control/limit outbound http/https. Have this up and running for most Windows servers, but I am struggling with servers monitored by Azure ARC and servers running ADsync.
I have allowed the following services / application in the application rulebase:
I still see lots of HTTP/HTTPS traffic to Microsoft Azure IP-addresses, but I am not able to find any (dymnamic) objects that includes Azure services /Azure ARC, ADsync).
Are there any Check Point objects that includes the Microsoft Azure IP addresses used for these services??
The same goes for Akamai HTTPS services. How to whitelist those??
Nils
Hi,
Updating the thread, we saw 2 issues:
1. There is a known issue of some occasions that the package will not get updates and we have a fix that is not yet released in the Jumbo, should be in the future JHF release.
2. UI issue, where we tried to add object via right click add new items, in such flow most of the time the picker of updatable objects will not be opened, a bug that we will take it with RnD to solve.
Thank you very much for your feedback and time @NilsKS .
Hi @NilsKS ,
We do have updatable objects that address your requirement, did you tried it?
Please let me know if it's indeed answer your question or you are looking for something else.
Thanks,
Ilya
Hi Ilya,
This is the complete list of updatable objects on my firewall:
I was looking for an application / service to allow these services with source:Internet, but I guess the correct thing to do is to use the above Windows / Microsoft updatable objects as source?
Thanks!
Best,
Nils
Hi @NilsKS,
i will take it with you offline as the list is not completed so i'm trying to understand what's went wrong there.
Thanks,
Ilya
Hi,
Updating the thread, we saw 2 issues:
1. There is a known issue of some occasions that the package will not get updates and we have a fix that is not yet released in the Jumbo, should be in the future JHF release.
2. UI issue, where we tried to add object via right click add new items, in such flow most of the time the picker of updatable objects will not be opened, a bug that we will take it with RnD to solve.
Thank you very much for your feedback and time @NilsKS .
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY