Managing routing based URLs centrally

Forum|Forum|10 years ago
March 13, 2016
1 reply
5002 views

Hi guys,

Can FortiManager managed a bunch of Fotigate Firewall routing-based URL centrally? The deployment may have 5 or more sites and the following configuration for port-based routing for specific URLs (using a variety of web and URL filters and FW policy) can be managed centrally via FortiManager?

This is the below configuration:

http://kb.fortinet.com/kb....do?externalID=FD36819

scao_FTNT

Staff

I read that file mentioend config 1. Configure DNS servers which should be used for ips-url filter resolution. config system ips-urlfilter-dns 2. Configure how often and for how long the DNS resolution should be remembered by the FortiGate. config webfilter ips-urlfilter-cache-setting 3. For wanted URLs specify the outgoing interface, gateway address and distance which will be used in automatically populated static route entries. config webfilter ips-urlfilter-setting these 3 are in per device level config menu - CLI-Only Objects list 4. Create filter list for all URLs which needs to be send over port2, to activate this feature action needs to be set to block. Defined URL needs to be unique and non-existing on the real server otherwise users will be served by replacement block message. config webfilter urlfilter -- "set one-arm-ips-urlfilter enable" is in advanced option list 5. Create webfilter profile where created urlfilter will be used. config webfilter profile -- you may need to use run script to link profile to needed url filter table 6. Create firewall policy where the specific webfilter profile will be used.

and these 3 are in policy package db config menu

thanks

Simon

happpieeeAuthor

New Member

Thanks for the info Simon.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded