Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
CharlesLZ
Explorer

No TLS Server Hello Response issue - Networking Troubleshoot

Hello, I am currently with a Tshoot on two scenarios from LAN.

IP A: Original IP

IP B: NAT IP

IP C: WebServer

Scenario A that works:

Flow:

IP A -> IP C leng 517 (Client Hello TCP with TLS packet)

IP B -> IP C leng 517 (Client Hello TCP with TLS packet)

IP C -> IP A ackno 518 (Server Hello TCP with TLS packet)

IP C-> IP B ackno 518 (Server Hello TCP with TLS packet)

At this point this is expected, and the user can open the browser and connect to the webserver from LAN over HTTPS 443.

 

Scenario B does Not Work:

Flow:

IP A -> IP C leng 517 (Client Hello TCP with TLS packet)

IP B -> IP C leng 517 (Client Hello TCP with TLS packet)

IP C -> IP A ackno 518 (ONLY TCP ack packet ) no Server Hello response

IP C-> IP B ackno 518 (ONLY TCP ack packet ) no Server Hello response

The user can't connect to this webserver from LAN, browser and over HTTPS 443.

On scenario B: I receive the acknowledge 518 without TLS Server Hello Payload.

Based on your experience could you infer this packet could be lost somewhere on the LAN network? or if Check Point Firewall at some point could block the Server Hello payload response?.

Could be something about Threat Prevention suite ? SecureXL?

I also created TCP State Exceptions but did not work.

I appreciate you response

Have a gr8 day!!!!!!!!!!!!

0 Kudos
4 Replies
This widget could not be displayed.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    CheckMates Events