Who rated this post

cancel
Showing results for 
Search instead for 
Did you mean: 
Tobias_Moritz
Advisor

You said "As long App. Control & URL Filtering are activated on the blade, all https traffic (set to inspect in the https rule) should be inspected because "Any" is everything including AppCtrl/URLF objects".

As far as I understand the way, Check Point Unified Policy works, this is not true.

See sk120964 for explanation.

Simplified: When the matching algorithm can determine the final first match for a rule in rulebase without need of higher blades, it will do.

Maybe someone can confirm this.

0 Kudos
(1)
Who rated this post