Technical Tip: How to bypass an application traffic through FortiProxy
| Description | This article describes an example of bypassing specific application traffic through FortiProxy. |
| Scope | FortiProxy. |
| Solution | The user application connects to the destination server through an internal firewall and proxy, the application traffic flow is shown below: Application -> Internal Firewall -> Explicit Proxy -> Internet -> Destination.
Example: User application (10.169.2.76) accesses the destination URL www.example.com (93.184.215.14).
By default, FortiProxy does not intercept application traffic using the not-explicit proxy port, and configuring a transparent proxy policy is needed to bypass this specific traffic.
In this example, the application would forward toward the Internet, and central snap mapping must be configured to translate the traffic accordingly.
Use the CLI command to confirm the application traffic through the transparent proxy and NAT translation.
fpx # diagnose wad filter src <client-ip> fpx # diagnose wad session list
|
