Description
This article provides the configuration steps to allow non HTTP/HTTPS traffic destined to backend servers in a FortiWeb operating in Reverse Proxy mode.
Scope
FortiWeb
Solution
By default, FortiWeb drops any non-HTTP/HTTPS traffic. In some situations, it may be required to allow other protocols to reach the backend servers such as SSH, SFTP etc. In this case, enabling the following settings on the FortiWeb allows the routing of this traffic by the device acting as a router in between.
# config router setting
set ip-forward enable
set ip6-forward enable ----{ Command available from version 5.2.x only
end
This command has no effect on a FortiWeb that is configured in transparent mode, which allows and forwards non-HTTP/HTTPS packets by default.