I want to check the IP address of the sender so that it is not blocked by the policy of the security device up to the proxy server.
The following settings are included in order to use a proxy server when updating signatures or renewing licenses.
At this time, which source IP address should be used for packets originating from Fortigate?
Is it the Mgmt port? Or is it an interface for data communication close to the proxy server?
config system autoupdate tunneling
set status enable
set address “10.**. **. **” ⇒ IP address of the proxy server
set port 8080
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi,
If I'm not mistaken, if you have the mgmt port configured it will use it, if not then it will be the interface that as a route/closest to the proxy.
https://docs.fortinet.com/document/fortigate/7.0.5/cli-reference/110620/config-system-fortiguard
Hi,
If I'm not mistaken, if you have the mgmt port configured it will use it, if not then it will be the interface that as a route/closest to the proxy.
https://docs.fortinet.com/document/fortigate/7.0.5/cli-reference/110620/config-system-fortiguard
Thanks for the quick reply.
You mean whether the “set source-ip” setting is included in the ”config system fortiguard”.
I just looked and the setting was not included.
In this case, I assume that the interface close to the proxy will be used, but if you know how to check which interface is actually used by Fortigate, I would appreciate it if you could let me know.
The packet capture confirmed the IP address of the interface for data as the source.
Thank you.
I saw a DNS packet for “globalfctupdate.fortinet.net”.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1662 | |
1077 | |
752 | |
446 | |
220 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.