| Description | This article describes how to configure default firewall policy action for Explicit Proxy policies |
| Scope | FortiGate. |
| Solution |
Explicit Proxy Policy has an Implicit rule at the end of the list. Different from normal Firewall Policy, it can be set to DENY or ACCEPT traffic that does NOT match the existing policies. This is useful in the testing phase or fine-tuning the existing policy whether the 'unmatched' traffic wants to be dropped or accepted in the meantime.
The option to change is located in Network -> Explicit Proxy -> Explicit Web Proxy/Explicit FTP Proxy (default is DENY).
The same steps can be done for FTP Proxy if required. |
