CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


First, I hope you're all well and staying safe.
Second, I want to give a "heads up" that you should see more activity here shortly, and maybe a few cosmetic changes.
I'll post more details to the "Announcements" forum soon, so be on the lookout. -E

 

Results 1 to 2 of 2

Thread: SSL Inspection for SMTP over SSL/STARTTLS traffic

  1. #1
    Join Date
    2015-10-01
    Posts
    39
    Rep Power
    0

    Default SSL Inspection for SMTP over SSL/STARTTLS traffic

    Hello,

    We have some R77.30 gateways with the IPS blade and our mail-relay servers behind the firewalls accept encrypted SMTP connections (port 25).

    Is there a way to inspect the traffic so that the IPS can see the connections unencrypted?

    i.e. can I just import the server certificate in Dashboard and add an HTTPS inspection rule, like we do for HTTPS traffic?

    Thanks,
    Dave

  2. #2
    Join Date
    2014-11-14
    Location
    Ottawa Canada
    Posts
    364
    Rep Power
    7

    Default Re: SSL Inspection for SMTP over SSL/STARTTLS traffic

    I believe that what you are looking for would be the Mail Transfer Agent (MTA):
    sk108553: Mail Transfer Agent (MTA) - FAQ
    sk109699: ATRG: Mail Transfer Agent (MTA)

Similar Threads

  1. Https inspection interferes into traffic which is bypassed
    By iku899 in forum Application Control Blade
    Replies: 9
    Last Post: 2016-09-13, 22:40
  2. Gmail email alias implementation using CheckPoint SMTP Security Server SMTP Resource
    By BAM279 in forum Content Security/Security Servers/CVP/UFP
    Replies: 1
    Last Post: 2014-03-05, 07:09
  3. SMTP Inspection Do Not Allow Certain Commands over Telnet
    By khungbo33 in forum IPS Blade (Formerly SmartDefense)
    Replies: 1
    Last Post: 2013-07-25, 15:40
  4. Enabling Antivirus on UTM-1 rejects SMTP traffic on implied rule
    By fhoekie in forum Check Point UTM-1 Appliances
    Replies: 4
    Last Post: 2011-01-22, 16:35
  5. Can NGX forward SMTP traffic in transparent mode?
    By croat in forum Interoperability
    Replies: 1
    Last Post: 2007-01-11, 14:55

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •