Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mhemambika
Staff
Staff

Created on ‎08-29-2024 01:26 AM

Article Id 337316

Technical Tip: How to restrict the explicit web proxy connections to the specific IP

Description This article describes how to restrict the explicit web proxy connections to the specific IP.
Scope FortiGate.
Solution

To restrict explicit web proxy connections to the specific IP, it is possible to use the below configuration under web proxy.

 

Let's take an example with an explicit proxy enabled on port1 whose IP is 10.14.4.174 as below.

 

config system interface

    edit "port1"

        set ip 10.14.4.174 255.255..255.0

        set allowaccess ping https

        set type physical

end

 

Configuration:

 

config web-proxy explicit

    set status enable

    set http-incoming-port 8080

    set incoming-ip 10.14.1.174

end

 

Where the incoming IP is set to 10.14.1.174, the proxy connections that come to this specific IP will be accepted by the firewall whereas other connections are discarded.

 

This is used when it is desired to restrict the explicit web proxy connections to any specific IP only which can defined by setting incoming-Ip under web-proxy configuration.
201
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.