Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
system_yogesh
New Contributor

Critical app-ctrl alert Proxy.HTTP

experts.tallysolutions.com website block in Proxy: Proxy.HTTP.

 

how do we allow particular reported website in application control.

 

 

 

2 REPLIES 2
system_yogesh
New Contributor

Hi anyone please help me to allow 

hmtay_FTNT
Staff
Staff

Hello,

 

The signature "Proxy.HTTP" detects a web proxy connection in a format like "GET https://xxx.yyy.com" or "CONNECT https://xxx.yyy.com". There are 2 reasons your session to the destination gets flag as "Proxy.HTTP".

 

1. You have a web proxy set up. In this case, you need to recalibrate either the web proxy or your firewall to allow the session. You cant set your network to use a web proxy and then have the signature "Proxy.HTTP" set to block.

 

2. You are using an application that connects to the destination with a web proxy connection. In this case you can add a custom application control signature to whitelist the host.

 

You can use this template:

 

F-SBID( --name "YourDomain.HTTP_Custom"; --protocol tcp; --service HTTP; --pattern "yourdomain.com"; --context host; --no_case; --app_cat 12; --weight 10; )   F-SBID( --name "YourDomain.SSL_Custom"; --protocol tcp; --service SSL; --pattern "yourdomain.com"; --context host; --no_case; --app_cat 12; --weight 10; )

 

Homing

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors