Skip to main content
doncacciatoconsuting
doncacciatoconsuting
Explorer II
October 23, 2024
Question

FortiClient / ZTNA Destination ports

  • October 23, 2024
  • 1 reply
  • 2864 views

If my proxy gateway is listening on port 9443 and the destination host is listening on 443, do I need to point my browser at https://example.com:9443 ? When I simply do https://example.com it doesn't work - I need to add 9443. I thought that FCT would append the 9443 to make it easier for the user... Thoughts ?

1 reply

AEK
SuperUser
AEK
SuperUser
October 24, 2024

In ZTNA you enter in your browser the address and port of the target server, in your case you use https://server:443, and the proxy does the job by proxying the traffic to FGT-Pub-IP:9443.

AEK
    doncacciatoconsuting
    doncacciatoconsutingAuthor
    Explorer II
    October 24, 2024

    Good morning, thanks for helping me out.

     

    Let me clarify:

    ZTNA Proxy Gateway

    www.mypublicsite.com:9443

     

    Destination Host

    10.99.99.7:443

     

    What needs to go in the browser ?

     

    What entry should go into public DNS ?

     

    AEK
    SuperUser
    AEK
    SuperUser
    October 24, 2024

    In your browser you enter https://10.99.99.7:443

    In public DNS you need to define www.mypublicsite.com with its public IP.

    AEK
      Terms & ConditionsAccessibility statement