This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
This widget could not be displayed.
7 Replies
Preview file
35 KB
Preview file
31 KB

When we go to the http resource on port 8080, in the browser debug we notice that there is no HEAD header. In the case where we bypass CheckPoint, the HEAD header appears.

Because of the absence of this header, we don't see the video image when accessing from a PC.
When accessing from an IPAD, we can't even authenticate to the resource, at which time we see a blank screen when we try to log in through the app.

We assume that all of the problems are due to the fact that we are not getting a HEAD header through CheckPoint. The client cannot automatically get the HEAD header.

We did manage to copy the header itself though, while we were checking for access bypassing CheckPoint. After that, we connected to the network behind CheckPoint and navigated to the header in the browser and were able to get the image.

Preview file
35 KB
Preview file
31 KB

no header when accessing via checkpoint

no header when accessing via checkpoint

When we go to the http resource on port 8080, in the browser debug we notice that there is no HEAD header. In the case where we bypass CheckPoint, the HEAD header appears.

Because of the absence of this header, we don't see the video image when accessing from a PC.
When accessing from an IPAD, we can't even authenticate to the resource, at which time we see a blank screen when we try to log in through the app.

We assume that all of the problems are due to the fact that we are not getting a HEAD header through CheckPoint. The client cannot automatically get the HEAD header.

We did manage to copy the header itself though, while we were checking for access bypassing CheckPoint. After that, we connected to the network behind CheckPoint and navigated to the header in the browser and were able to get the image.

Preview file
35 KB
Preview file
31 KB

When we go to the http resource on port 8080, in the browser debug we notice that there is no HEAD header. In the case where we bypass CheckPoint, the HEAD header appears.

Because of the absence of this header, we don't see the video image when accessing from a PC.
When accessing from an IPAD, we can't even authenticate to the resource, at which time we see a blank screen when we try to log in through the app.

We assume that all of the problems are due to the fact that we are not getting a HEAD header through CheckPoint. The client cannot automatically get the HEAD header.

We did manage to copy the header itself though, while we were checking for access bypassing CheckPoint. After that, we connected to the network behind CheckPoint and navigated to the header in the browser and were able to get the image.

Preview file
35 KB
Preview file
31 KB
0 Kudos
0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2023-01-31 03:29 AM
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2023-01-31 03:29 AM

Which version/JHF, what blades are enabled?

Is the gateway working/configured as a proxy?

Do you have non-standard configuration for IPS protections such as:

Header.png

 

CCSM R77/R80/ELITE

Which version/JHF, what blades are enabled?

Is the gateway working/configured as a proxy?

Do you have non-standard configuration for IPS protections such as:

Header.png

 

CCSM R77/R80/ELITE
Arturxr
Contributor
‎2023-01-31 05:48 AM
Arturxr
Contributor
‎2023-01-31 05:48 AM
In response to Chris_Atkinson
In response to Chris_Atkinson

Which version/JHF, what blades are enabled? - 81.10, Take 66, firewall, mab, app control, url f, IA, monitoring, ips ab and av

Is the gateway working/configured as a proxy? - NO

Do you have non-standard configuration for IPS protections such as: - NO

Which version/JHF, what blades are enabled? - 81.10, Take 66, firewall, mab, app control, url f, IA, monitoring, ips ab and av

Is the gateway working/configured as a proxy? - NO

Do you have non-standard configuration for IPS protections such as: - NO

0 Kudos
0 Kudos
Arturxr
Contributor
‎2023-02-02 12:19 AM
Arturxr
Contributor
‎2023-02-02 12:19 AM
In response to PhoneBoy
In response to PhoneBoy

That didn't solve our problem

That didn't solve our problem

0 Kudos
0 Kudos
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2023-02-02 12:38 AM
Chris_Atkinson
MVP Platinum CHKP MVP Platinum CHKP
MVP Platinum CHKP
‎2023-02-02 12:38 AM
In response to Arturxr
In response to Arturxr

Recommend investigating further with TAC in that case.

Anything you can share with them about exceptions you've tested / trialed will also help.

CCSM R77/R80/ELITE

Recommend investigating further with TAC in that case.

Anything you can share with them about exceptions you've tested / trialed will also help.

CCSM R77/R80/ELITE
0 Kudos
0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2023-01-31 07:54 PM
the_rock
MVP Diamond
MVP Diamond
‎2023-01-31 07:54 PM

I believe sk @PhoneBoy gave is your best bet.

Best,
Andy
"Have a great day and if its not, change it"

I believe sk @PhoneBoy gave is your best bet.

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
0 Kudos