Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
yangw
Staff
Staff

Created on ‎03-12-2024 11:21 PM

Article Id 304287

Technical Tip: Using ISDB object to allow FortiClient connect to FortiClient Cloud

Description This article describes how to create a policy rule with an ISDB address object as the destination for FortiClient connect to FortiClient Cloud.
Scope FortiGate v7.2.
Solution
  • Creating policy rule with ISDB address object as the destination for FortiClient connect to FortiClient Cloud can be used in the following scenario:
  • The FortiClient is behind FortiGate as the network topology below:

FortiClient - LAN interface - FortiGate - WAN interface - the internet

 

  • As a requirement, direct internet access is not allowed, therefore all traffic should be denied besides the FortiClient Cloud connection.
  • The ISDB address object can be applied to the destination field for the scenario:

 

 
 

Fortinet-FCTEMSISDB.PNG

 

Fortinet-FCTEMSISDB-fct.PNG

Related document:

Connecting an endpoint to FortiClient Cloud
161
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.