- CheckMates
- :
- Products
- :
- Quantum
- :
- Security Gateways
- :
- Implied rule allowing external https traffic which...
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Implied rule allowing external https traffic which need to block
Noticed internet resources are accessing our firewall external interface ip with port 443. These traffics are allowed through implied rule and looking for fix. These gateways are running old gaia version 77.20.
Unable to find solution on the checkmates, due to this old gaia version and TAC case also not possible.
Looking for urgent solution
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You'll probably need to do something like this to change the implied rules: https://community.checkpoint.com/t5/Security-Gateways/How-to-disable-Gaia-access-from-the-Internet/m...
Note that the file you will need to edit will be in the relevant backward compatibility directory on your management rather than $FWDIR/lib.
Or you can create an fw samp rule to block the necessary traffic: https://support.checkpoint.com/results/sk/sk164472
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
thank you for the swift response, let me perform above task and update you asap.