Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
kvimaladevi
Staff
Staff

Created on ‎08-31-2023 02:47 AM Edited on ‎01-22-2025 09:27 PM By Community Manager

Article Id 271295

Technical Tip: ZTNA rules options after 7.2.5 upgrade

Description This article describes how to configure ZTNA rules after the 7.2.5 upgrade.
Scope FortiGate v7.2.5 and above.
Solution

In the previous versions, the option to configure ZTNA rules was available under Policy & Objects -> ZTNA -> ZTNA Rules.


The ZTNA option has to be initially enabled under System -> Feature Visibility.

before 7.2.5 upgrade.PNG
After upgrading to v7.2.5, the ZTNA rules option is not available under Policy & Objects -> ZTNA.

After 7.2.5 rule missing.PNG
To access this feature on 7.2.5, navigate to System -> Feature Visibility and enable Explicit Proxy.

enable explicit proxy.PNG
After enabling Explicit proxy, it will be possible to create a new ZTNA-type policy under Policy & Objects -> Proxy Policy.

proxy policy ztna.PNG

 

It is also possible to create a ZTNA-type policy under Policy & Objects -> Firewall Policy.

The difference is that this method cannot control access based on the destination interface or the real server’s destination address as a Proxy Policy.

 

Related document:

Basic ZTNA configuration | FortiGate / FortiOS 7.2.5 | Fortinet Document Library

 

Labels:
1265
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.