Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nmarx
Staff
Staff

Created on ‎11-26-2014 10:49 AM

Article Id 191134

Technical Note: Using Port 443 for Administrative Access and SSL VPN

Description
Requirements:

· Two publicly routable IP addresses (One additional to the one assigned on the outside interface)

· Space to create a loopback interface (There is a 128-256 max object limit for interfaces)

· Space to create a Virtual IP (maximum VIP objects may be applicable)

· Space to create a firewall address object (max. address objects may be applicable)

· Completed configuration of SSL VPN portal and settings

· Completed configuration of user groups to be used for SSL VPN authentication

Note: A list of max values is available at http://docs.fortinet.com/d/fortigate-fortios-5.2.1-maximum-values-table-1/download

Scope
Accessing the FortiGate's GUI and SSL VPN on TCP port 443.

By default this is not possible as port 443 can only be assigned to one system service.

Since SSL VPN and HTTPS administrative access are two different system services a workaround is required.

Solution
Solution is attached in form of a PDF document.

Preview file
121 KB
6917
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.