Description | This article describes how to allow monitoring traffic between agents and the Zabbix server to pass through FortiGate. |
Scope | FortiGate. |
Solution |
Zabbix uses two different ports, depending on if it is performing a passive check or an active check.
In the case of a passive agent scenario, traffic is sent from the server to the agent via port 10050.
In the following scenario, the agents are located in the LAN network and the server on DMZ.
First you, create a specific service for port 10050/TCP protocol as shown below:
After that, use the service to allow the traffic via the following policy:
In an active agent scenario, all data processing is performed on the agent which is pushing the traffic to the server via port 10051/TCP protocol. For this scenario, it is necessary to create a specific service for port 10051/TCP protocol, as shown below:
After that, use the service to allow the traffic via the following policy:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.