Does FortiOS 5.2.5 or 5.4 has functionality to redirect HTTPS traffic to ICAP server?

Forum|Forum|10 years ago
February 29, 2016
1 reply
4320 views

Does FortiOS 5.4 has functionality to redirect HTTPS traffic to ICAP server?

Hello, We have currently Forrtigate VM64 v5.2.5,build701, configured ICAP for redirect http/https traffic to ICAP server (DLP acts as ICAP serrver) HTTP traffic redirecting succsessfully to ICAP server. But HTTPS traffic is not redirecting to ICAP server. (configured ssl-inspection and enabled it on policy) I think v5.2.5,build701 does not support redirecting HTTPS traffic via ICAP The question is: Does new FortiOS 5.4 has functionality to redirect HTTPS traffic to ICAP server? Thanks

Best answer by ede_pfau

In the 5.4 Handbook, pg. 2190, you find:

If the FortiGate unit supports HTTPS inspection, HTTPS traffic intercepted by a policy that includes an ICAP profile is also offloaded to the ICAP server in the same way as HTTP traffic.

So this is hardware dependent as well.

This passage is included in the v5.2.3 Handbook as well.

ede_pfauAnswer

SuperUser

In the 5.4 Handbook, pg. 2190, you find:

If the FortiGate unit supports HTTPS inspection, HTTPS traffic intercepted by a policy that includes an ICAP profile is also offloaded to the ICAP server in the same way as HTTP traffic.

So this is hardware dependent as well.

This passage is included in the v5.2.3 Handbook as well.

sulikoakhvledianiAuthor

New Member

Thanks for information

gigants81

New Member

Hi, we are using FortiGate 1000D and we are looking into the possibility to work with DLP too.

Does my unit able to intercept HTTPS traffic and redirect through ICAP to an ICAP server for DLP content inspection?

Thanks!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded