Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Daniel_Hainich
Collaborator

SSL Outbound Inspection Bypass for www.telekom.de

hi, i need to bypass www.telekom.de in https inspection.

i tried *.telekom.de, www.telekom.de  as custom application. but none of them is working. traffic is still inspected.

what iam doing wrong?

 

thanks

daniel

16 Replies
the_rock
Legend
Legend

I just tested it in my lab and I put *telekom.de* and worked fine.

Andy

Daniel_Hainich
Collaborator

i tried it with *telekom.de* and it is not working. iam running R81.20 take 84

the_rock
Legend
Legend

I think something may had been cashed. I just tried it on my iphone, site does not even come up, so looks like its website issue, NOT ssl inspection problem.

Andy

Daniel_Hainich
Collaborator

i think in the same direction, because some other sites i set on bypass are working. only this site isnt working. i opened the site on different devices, and the site is looking different on each device.

on monday i try it on my r82 lab. maybe they can fix it over the weekend.

the_rock
Legend
Legend

Just for my own sanity, I even connected to Germany via nordvpn account and even then, I could NOT get to the site and Im talking about my personal desktop at home.

I tried below:

telekom.de

https://www.telekom.de

www.telekom.de

Same issue, nothing worked.

Andy

Daniel_Hainich
Collaborator

thank your for the help!

the_rock
Legend
Legend

Sure, any time mate. That is why Im 100% sure its not an issue with the fw/ssl inspection, based on the test I had done. I even tried same method from my personal laptop, exact same result.

That alone, without any doubt, tells me its website problem.

Andy

the_rock
Legend
Legend

This site works fine and seems to be totally legit/valid.

Andy

 

Screenshot_1.png

Daniel_Hainich
Collaborator

hi,

today i checked the exception again in my R82 lab. iam not able to configure an bypass for certain sites.

example: www.heise.de and www.telekom.de

what iam doing wrong?

i defined the custom applications as described here: https://support.checkpoint.com/results/sk/sk165094

 

thanks

daniel

 

 

the_rock
Legend
Legend

Heise site works fine for me, no issues. Im sure telekom.de is broken, if it ever worked.

Andy

Daniel_Hainich
Collaborator

but why heise istn working in my lab. the bypass rules are not working. until i disable the inspection-rule, all traffic will be inspected. i tried my regex and without. do you have an idea?

the_rock
Legend
Legend

Btw, Im in Canada est, so 6 hours behind you, just starting my day. Happy to do remote and fix it for you. I do ssl inspection issues all the time, so Im confident we can figure it out.

Let me know.

Andy

the_rock
Legend
Legend

I dont have an idea until I saw your environment, sorry. Only other thing I could go by would be to make sure below is set and also if you can send the log showing why it fails.

Andy

 

Screenshot_1.png

the_rock
Legend
Legend

*heise.de* has to work, I tested it myself. What does traffic log show?

Andy

Daniel_Hainich
Collaborator

 
the_rock
Legend
Legend

Lets do remote if you are allowed to. I got a feeling its not working because of what I pointed out.

Andy

 

Screenshot_1.png

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events