Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
K_montalvo
Contributor

OPEN EXTERNAL PORTS ON CHECKPOINT SECURITY GATEWAY

Hello Friends,

I need to closed all external ports facing the internet of a Check Point 5100 Security Gateway  running R80.30. I already tried sk105740 choosing (Through internal Interfaces) but did not worked for me. I can keep seeing port 80,443,264 exposed to the internet. I want to try the strange NAT solution but before i want to confirm if we have any other way to fix this issue? Any help is very appreciated.

 

Thanks,

0 Kudos
2 Replies
the_rock
Authority
Authority

Is it being accepted on specific rule(s)?

0 Kudos
PhoneBoy
Admin
Admin

80/443 are definitely implied rules.
264 can be disabled by applying a recent JHF according to: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
80, you can disable with: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...
If you have Remote Access users at all, disabling port 443 will prevent end users from adding your gateway as a site in their client.