Hey Guys!
I have a UTM 9 Home Edition VPN Portal. It works great. I can access it from just about everywhere.
I have need to access it through another firewall. A Checkpoint firewall to be exact. With Checkpoint's HTTPS Inspection turned off, it works fine. When I turn it on, I cannot load the VPN Portal login page at all.
For those of you NOT familiar with Checkpoint's HTTPS Inspection, to explain it quickly and easily, it operates on a Man-In-The-Middle approach, it intercepts the HTTPS certificate, and issues it's own to the server and client, allow it to decrypt and inspect the otherwise encrypted HTTPS traffic. Personally, I believe this to be the reason the VPN Portal page is not loading, it is "seeing" or detecting the MITM and not completing the connection for that reason.
From the Checkpoint side of things, everything is working properly and as expected. The only way to change this is to disable HTTPS Inspection completely, and that cannot be done (even exceptions to HTTPS Inspection does not truly change this MITM behaviour, so does not resolve the issue).
Due to my unfamiliarity with Sophos, I have no idea where to start on that end... I would expect there to be some kind of log of some kind somehwere, but cannot locate anything that makes any sense to me.
Can anyone offer any pointers? What logs to look at? Where to find them? What kind of entries/errors I might be looking for? Is there maybe a setting or configuration somewhere to allow for that MITM behaviour? Maybe allow just that one certificate or something?
Any and all help is appreciated.
Thanks,
-jon
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
