Help
FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
jintrah_FTNT
Staff
Staff

Created on ‎08-10-2015 02:27 AM Edited on ‎06-03-2022 07:17 AM By Anonymous

Article Id 195142

Technical Tip: How to route non HTTP/HTTPS traffic destined to backend web servers in a FortiWeb

Description

This article provides the configuration steps to allow non HTTP/HTTPS traffic destined to backend servers in a FortiWeb operating in Reverse Proxy mode.

 

Scope

FortiWeb


Solution

By default, FortiWeb drops any non-HTTP/HTTPS traffic. In some situations, it may be required to allow other protocols to reach the backend servers such as SSH, SFTP etc. In this case, enabling the following settings on the FortiWeb allows the routing of this traffic by the device acting as a router in between.
 
# config router setting
set ip-forward enable
set ip6-forward enable ----{ Command available from version 5.2.x only
end
 
This command has no effect on a FortiWeb that is configured in transparent mode, which allows and forwards non-HTTP/HTTPS packets by default.

 

Labels:
2336
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.