Configuration doubt

wajih · ‎03-06-2017

Hello,

i'am setting up a fortiweb v 5.7 infront of my web server which works with 2 ports 80 and 9443 (https).

the url 'x.y.z/store' use the port 80 and there is no problem.

the url 'x.y.z' use the port 9443 https ( redirection port from 80 to 9443 in the server).

my question how to configure that in my Fortiweb?

FYI: i configured a server policy with http and https service (custom service tcp\9443) and doesn't work.

any idea please ??

Regards,

Wajih

Rafael_LEHMANI_FTNT · ‎03-06-2017

Hi Wajih,

Are you using 9443 in backend server as https port ?

You should enable SSL on port 9443 in FWB Server Pool configuration.

Thnaks

Rafael

Rafael LEHMANI

wajih · ‎03-06-2017

hi rafael and thank you for your response.

Are you using 9443 in backend server as https port ? yes

when i change Nat on firewall to the web server directly it works Fine.

You should enable SSL on port 9443 in FWB Server Pool configuration: yes i did but the problem persist.

Regards,

Wajih

Rafael_LEHMANI_FTNT · ‎03-06-2017

Did you set backend server DGW pointing at FWB ?
Please share FWB pcap and config.
Rafael

Rafael LEHMANI

wajih · ‎03-06-2017

rafael, you find attached my configuration file of the fortiweb.

Rafael_LEHMANI_FTNT · ‎03-06-2017

I may see a typo in the config

config server-policy vserver
edit "virtual_Server1"
set vip 10.103.73.144/26
set interface Po1 <================== should be port1

BTW, backend 10.103.73.142 is set as http (not https on port 9443)

Can you pcap from FWB GUI :

- http://10.103.73.144
and

- https://10.103.73.144:9443

Rafael LEHMANI