Does IPS work on web server without full ssl inspection enabled?

Forum|Forum|7 years ago
January 25, 2019
2 replies
3558 views

I have a webserver using SSL sitting behind a Fortigate. I have a port forward rule and IPS policy enabled to allow outside traffic in to the server. However, the policy doesn't have full deep ssl inspection. Without this does the IPS policy provide any protection to the SSL server?

skoneAuthor

New Member

Anyone?

DisPlay

New Member

I'm encountering a problem with SSL Deep inspection and IPS protection enabled on a policy:
some websites are not reachable and the browser return a normal "this site can't be reached" message.
If I remove the IPS profile or I set the certificate inspection profile (with IPS enabled), the traffic works correctly.
If someone knows how fortigate works with Deep inspection and IPS let me know.
Have great day!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded