Technical Tip: How to detect HTTPS-in-HTTP traffic...

FortiProxy

FortiProxy provides enterprise-class protection against internet-borne threats and Advanced Web Content Caching

Article Id 318580

Description

This article describes how to detect HTTPS-in-HTTP traffic on FortiProxy.

Scope

FortiProxy v7.0.7 or above.

Solution

Before v7.0.7, it was not possible to detect HTTPS-in-HTTP traffic.

In an explicit web proxy, if the 'detect-https-in-http-request' setting is enabled, HTTP GET/POST requests sent to the FortiProxy will be detected and passed instead of blocked.

This setting was introduced starting from v7.0.7 in the 'config web-proxy explicit-proxy' section. Starting from v7.4.1, this setting has been moved to the 'config firewall policy' section.

For more info about the usage and syntax, check the CLI reference guide:

FortiProxy 7.0.7 CLI Reference - "config web-proxy explicit-proxy"

FortiProxy 7.4.1 CLI Reference - "config firewall policy"

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Technical Tip: How to detect HTTPS-in-HTTP trafficon FortiProxy

You are leaving our website