FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
kjohri
Staff
Staff
Article Id 277117
Description

 

This article explains the process of identifying application signatures that require deep inspection.

 

Scope

 

FortiGate, UTM.

 

Solution

 

Application control relies on a deep inspection profile for optimal functionality. However, it is worth noting that deep SSL inspection may not be essential for applications that do not require it.
Additionally, there is a banner at the top of the profile that indicates whether certain applications necessitate deep inspection.

To identify applications that require deep inspection, search for the specific application in the FortiGuard database at:

https://www.fortiguard.com/appcontrol/

Youtube.png

 

SSH.png


Alternatively, this information can also be verified under 'Application Signatures' within the Security Profiles.
Simply enter the signature name into the search field, and the presence of a lock icon next to the application signature will signify that deep SSL inspection is required for that signature.


AppSignatures.png

Related documents:

Creating application control profiles
SSL/TLS deep inspection
Technical Tip: How to enable deep inspection and import a certificate in the browser.