Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
axel_gonzalez_FTNT
Staff
Staff

Created on ‎05-22-2017 02:57 PM

Article Id 194664

Technical Tip: 'Entry not found' when configuring explicit proxy firewall policy

Description
To configure an explicit proxy firewall policy:

See the following error 'Entry not found'.


Try to create the policy using CLI:

# config firewall explicit-proxy-policy
    edit
        set uuid 5fe08756-0e1d-51e7-225b-24447f910a2fc
        set proxy ftp
        set dstintf "port1"
        set srcaddr "all"
        set dstaddr "all"
        set action accept
        set schedule "always"
    next
end
        set proxy web
    end
Attribute 'service' MUST be set.
Command fail. Return Code -56


Solution
This error can appear because there is no 'web proxy' service defined:

Configure through CLI the next command:

# config firewall service custom
    edit "webproxy"
        set explicit-proxy enable
        set category "Web Proxy"
        set protocol ALL
        set comment ''
        set color 0
        set visibility enable
        set iprange 0.0.0.0
        set fqdn ''
        set tcp-portrange 0-65535:0-65535
    next
end

Now, policy can be created without any problem.


Labels:
3526
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.