Technical Tip: How to configure L7 FTP over TLS Virtual Server in FortiADC

kmak · ‎06-06-2023

Description

This article describes the steps to create L7 FTP over TLS Virtual Server.

Scope

FortiADC.

Solution

Prerequisite:

- FortiADC version 7.0.0 above.

- FortiADC Virtual Server’s Custom Application Profile type FTP.

1) Navigate to Application Resources under the Server Load Balance Tab. Create a new profile for the L7 FTP type, or clone from an existing L7 FTP Profile type.

2) In the created FTP Application Profile, select 'Explicit' as the Security Mode.

3) Create/Clone a new Client SSL profile to use an imported SSL certificate. Use a default Client SSL profile if using the default certificate from FortiADC.

4) Create a new L7 FTP Virtual Server or edit the existing L7 HTTP Virtual Server. Under the General Tab, select the FTP Resources Application Profile, Client SSL Profile, Persistence policy, and the Real Server Pool.

5) Test the FTP over TLS settings by connecting to the FTP Virtual Server. In this article, a test was performed using FileZilla FTP Client. Configure the FTP profile in FileZilla FTP Client.

6) TLS connection established will be shown if the FTP over TLS login successfully.

Related documents:

https://docs.fortinet.com/document/fortiadc/7.2.0/handbook/559628/configuring-application-profiles

https://docs.fortinet.com/document/fortiadc/7.0.0/handbook/190300

Technical Tip: How to configure L7 FTP over TLS Virtual Server in FortiADC

You are leaving our website