FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
jintrah_FTNT
Staff
Staff
Article Id 195142

Description

This article provides the configuration steps to allow non HTTP/HTTPS traffic destined to backend servers in a FortiWeb operating in Reverse Proxy mode.

 

Scope

FortiWeb


Solution

By default, FortiWeb drops any non-HTTP/HTTPS traffic. In some situations, it may be required to allow other protocols to reach the backend servers such as SSH, SFTP etc. In this case, enabling the following settings on the FortiWeb allows the routing of this traffic by the device acting as a router in between.
 
# config router setting
set ip-forward enable
set ip6-forward enable ----{ Command available from version 5.2.x only
end
 
This command has no effect on a FortiWeb that is configured in transparent mode, which allows and forwards non-HTTP/HTTPS packets by default.

 

Contributors