Sign up to save your podcasts
Or
Share Course 32 - Checkpoint CCSA R80 | Episode 8: HTTPS Inspection, URL Filtering, and Identity Awareness
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Course 32 - Checkpoint CCSA R80 | Episode 8: HTTPS Inspection, URL Filtering, and Identity Awareness
In this lesson, you’ll learn about: HTTPS inspection, advanced filtering, and identity-based security in Check Point R801. HTTPS Inspection (Deep Traffic Visibility)
You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cybercode_academy
- In Check Point R80, HTTPS traffic is encrypted → normally invisible to firewalls
- Malware or attacks can hide inside:
- SSL/TLS encrypted traffic
- Gateway acts as a proxy:
- Intercepts HTTPS traffic
- Decrypts it in memory
- Inspects content
- Re-encrypts and forwards
- Enable inspection policy
- Install and trust certificates on client devices
- Use SmartConsole logs
- Confirm sessions are being inspected
- Hidden malware
- Encrypted attacks
- Control access based on:
- Website categories
- Application types
- Allow:
- Search engines
- Restrict:
- Social media
- Gambling
- Malicious sites
- User sees a warning page
- Must accept policy to continue
- User is notified
- Traffic still allowed
- Enforce company policy
- Educate users
- Avoid full blocking
- Traditional firewalls rely on:
- IP addresses
- Identity-based enforcement in Check Point R80
- Active Directory
- Captive Portal
- Endpoint agents
- Combine:
- Users
- Groups
- Machines
- Networks
- Allow:
- User “Bob” → access internal app
- Deny:
- Others
- Logs show:
- Username (not just IP)
- Faster troubleshooting
- Better auditing
- Stronger security investigations
- HTTPS inspection enables deep visibility into encrypted traffic
- Certificates are required to avoid browser warnings
- “Ask” and “Inform” provide interactive enforcement
- Identity Awareness ties traffic to real users
- Access Roles enable highly granular security rules
- From IP-based → identity-based security
- From blind encryption → full traffic inspection
- From rigid blocking → interactive user contro
You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cybercode_academy
View all episodes
By CyberCode AcademyIn this lesson, you’ll learn about: HTTPS inspection, advanced filtering, and identity-based security in Check Point R801. HTTPS Inspection (Deep Traffic Visibility)
You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cybercode_academy
- In Check Point R80, HTTPS traffic is encrypted → normally invisible to firewalls
- Malware or attacks can hide inside:
- SSL/TLS encrypted traffic
- Gateway acts as a proxy:
- Intercepts HTTPS traffic
- Decrypts it in memory
- Inspects content
- Re-encrypts and forwards
- Enable inspection policy
- Install and trust certificates on client devices
- Use SmartConsole logs
- Confirm sessions are being inspected
- Hidden malware
- Encrypted attacks
- Control access based on:
- Website categories
- Application types
- Allow:
- Search engines
- Restrict:
- Social media
- Gambling
- Malicious sites
- User sees a warning page
- Must accept policy to continue
- User is notified
- Traffic still allowed
- Enforce company policy
- Educate users
- Avoid full blocking
- Traditional firewalls rely on:
- IP addresses
- Identity-based enforcement in Check Point R80
- Active Directory
- Captive Portal
- Endpoint agents
- Combine:
- Users
- Groups
- Machines
- Networks
- Allow:
- User “Bob” → access internal app
- Deny:
- Others
- Logs show:
- Username (not just IP)
- Faster troubleshooting
- Better auditing
- Stronger security investigations
- HTTPS inspection enables deep visibility into encrypted traffic
- Certificates are required to avoid browser warnings
- “Ask” and “Inform” provide interactive enforcement
- Identity Awareness ties traffic to real users
- Access Roles enable highly granular security rules
- From IP-based → identity-based security
- From blind encryption → full traffic inspection
- From rigid blocking → interactive user contro
You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cybercode_academy