Hi,
i've a issue with https filtering: i can't reach websites.
I make a policy in this way:
set name "test" set uuid ** set srcintf "lan" set dstintf "wan2" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set logtraffic all set fsso enable set users "testldap" (i use captive portal with Ldap user) set av-profile "default" set webfilter-profile "PROFILE" set application-list "ALL" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable
SSH Profile:
edit "certificate-inspection" set comment "SSL handshake inspection." config ssl end config https set ports 443 set status certificate-inspection set allow-invalid-server-cert enable end config ftps set ports 990 set status disable set allow-invalid-server-cert enable end config imaps set ports 993 set status disable set allow-invalid-server-cert enable end config pop3s set ports 995 set status disable set allow-invalid-server-cert enable end config smtps set ports 465 set status disable set allow-invalid-server-cert enable end set caname "Fortinet_CA_SSLProxy" set certname "Fortinet_SSLProxy" next
After logon in the capture portale i can't reach all HTTPS Website.. what am I doing wrong?
Thanks
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.