Awesome explanation.. I wish you could have uploaded more videos on this channel as your explanation is in depth and super awesome..Please upload mode videos.
excellent. One of the key items that was not discussed is the negotiations methods, IKE v1/v2, pre-shared keys, digital certificates, encryption options, etc. Be good to see that piece. Great job here.
Awesome explanation again ...thanks .Please Keep uploading more videos on complicated topics of checkpoint like securexl,migration,ike v1 both phases etc .
Might be redundant, but why does SSL VPN need the Layer 7 application to be TCP? Since SSL is encrypting the data coming out of layer 7, can the UDP protocol below it now transfer this "encrypted data"?
Because It was originally designed that way, since TCP is stateful , and UDP is stateless, being stateless it did not keep track of SSL encryption, which needs to be stateful, meaning a virtual session needed to be establish first, then encryption,, and UPD does not do this, but there is a solution, that I will explain later, which is a hack in layer 3 to do ssl , for UDP and ICMP and other stateless protocols.
The video mentions that SSL vpns only work over TCP yet OPENVPN which is also a SSL VPN is able to function over the UDP protocol. Where is the misunderstanding?
ok, thanks for the feedback, really appreciate it, seamless and seamful is in relation to user experience, how easy or complex to setup VPN and get access to your data
Awesome explanation.. I wish you could have uploaded more videos on this channel as your explanation is in depth and super awesome..Please upload mode videos.
excellent. One of the key items that was not discussed is the negotiations methods, IKE v1/v2, pre-shared keys, digital certificates, encryption options, etc. Be good to see that piece. Great job here.
good refresh/content. thumbs up.
Any data privacy/data leakage/cookies etc security issue using SSL VPN on non corporate devices?
Great lecture... Please provide some tutorials or links to setup these 2 in linux servers. thanks in advance.
Awesome explanation again ...thanks .Please Keep uploading more videos on complicated topics of checkpoint like securexl,migration,ike v1 both phases etc .
Many Many thanks for sharing all these knowledge. I really appreciate your work. Please upload more videos...
Perfect...thank you sir. We appreciate your effort
Very good Explanation, I wish you could upload some practical stuffs related to Checkpoint Firewall as well :) Thanks
Might be redundant, but why does SSL VPN need the Layer 7 application to be TCP? Since SSL is encrypting the data coming out of layer 7, can the UDP protocol below it now transfer this "encrypted data"?
Because It was originally designed that way, since TCP is stateful , and UDP is stateless, being stateless it did not keep track of SSL encryption, which needs to be stateful, meaning a virtual session needed to be establish first, then encryption,, and UPD does not do this, but there is a solution, that I will explain later, which is a hack in layer 3 to do ssl , for UDP and ICMP and other stateless protocols.
awesome, explained very well
Excellent video. Thumbs up. 👍
Great lecture
Awesome Job Thanks
The video mentions that SSL vpns only work over TCP yet OPENVPN which is also a SSL VPN is able to function over the UDP protocol. Where is the misunderstanding?
this is a solution, which is a layer 3 ssl shim, I will talk about that in upcoming video
@@checkpointtrainingbytes278 have u created layer-3 ssl shim video so far ?
Thank you!, but didn't quite understand the interface view on seamless and seamful
ok, thanks for the feedback, really appreciate it, seamless and seamful is in relation to user experience, how easy or complex to setup VPN and get access to your data
Thanks.. :)