Created on 03-28-2022 09:55 PM Edited on 02-09-2024 05:41 AM By Stephen_G
Description | This article describes how to configure a ZTNA Rule for remote access to file shares (SMB). |
Scope | FortiGate 7.0.4, FortiClient 7.0.3, |
Solution |
Starting with FortiOS 7.0.4 and FortiClient 7.0.3, it is possible to leverage ZTNA TCP Forwarding Access Proxy rules to connect to a file share remotely without the need of a VPN connection.
Reviewing the following document may be helpful to better understand the ZTNA components.
Configuration Steps.
Exact same steps can be used from other TCP Forwarding configuration examples as per administration guide link below. The only difference is that port used for SMB is 445.
Note. Starting with FortiClient EMS 7.0.3, ZTNA Connection Rules can also be created via GUI rather than only via XML files.
It is common to map network drives using the file server name. This can also be done starting with FortiClient 7.0.3, which supports FQDN-based ZTNA TCP forwarding services as per documentation below.
File share can be accessed directly if the full path is known or it can be mapped to a network drive by browsing the file server tree.
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.