Configuring the Application Control and URL Filtering Software Blades for Monitor Mode

Configure the settings below, if you enabled Application Control or URL Filtering Software Blade on the Security GroupClosed A logical group of Security Appliances that provides Active/Active cluster functionality. A Security Group can contain one or more Security Appliances. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. Every Security Group contains: (A) Applicable Uplink ports, to which your production networks are connected; (B) Security Appliances (the Quantum Maestro Orchestrator determines the applicable Downlink ports automatically); (C) Applicable management port, to which the Check Point Management Server is connected. in Monitor Mode:

Step

Instructions

1

Connect with SmartConsole to the Security Management Server or Domain Management Server that manages this Security Group.

2

From the left navigation panel, click Manage & Settings > Blades.

3

In the Application Control & URL Filtering section, click Advanced Settings.

The Application Control & URL Filtering Settings window opens.

4

On the General page:

  • In the Fail mode section, select Allow all requests (fail-open).

  • In the URL Filtering section, select Categorize HTTPS websites.

5

On the Check Point online web service page:

  • In the Website categorization mode section, select Background.

  • Select Categorize social networking widgets.

6

Click OK to close the Application Control & URL Filtering Settings window.

7

Install the Access Control Policy on the Security Gateway object.

For more information:

See the R81.20 Security Management Administration Guide.