We are in the process of doing a basic Forticlient EMS setup. I've been going through all documentation and searching for answers to the last part of the puzzle.
Our setup:
Forticlient EMS on Windows Server
Fabric is configured on FortiGate and syncing tags correctly (although not currently used)
We have setup a VIP to permit the telemetry port 8013 through to the EMS server.
We have configured one ZTNA connection for an RDP server. We are currently using default 443 for the ZTNA connection to the inside device on port 3389 just for testing.
The client device is connecting to the EMS server and is receiving the ZTNA destination correctly.
We have configured a ZTNA Server to allow the TCP traffic from external ip on port 443 to the internal ip on port 3389.
We have also created a Firewall Policy for ZTNA to allow the traffic to the ZTNA Server.
But at this point when we try to connect to the RDP server on our test machine, we never see traffic hitting the ZTNA firewall policy. What I don't understand is how does the Forticlient on the test machine knows to route or intercept that traffic. I feel like I missed a large piece of the puzzle even after reading ZTNA documentation in the knowledgebase. Can anyone point me in the right direction?
Note: The RDP connection is only using IP addresses, and we will deal with DNS configurations later.
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
The end results was a broken Security Fabric connector.
Despite running the "diagnose endpoint fctems test-connectivity" showing the connector was OK, we had to reconnect it to fix.
Just putting it out there for anyone else.
What I don't understand is how does the Forticlient on the test machine knows to route or intercept that traffic.
-> Simply your FortiClient acts as a proxy for the defined ZTNA destinations.
Try check the following:
The below tech tip should help.
The end results was a broken Security Fabric connector.
Despite running the "diagnose endpoint fctems test-connectivity" showing the connector was OK, we had to reconnect it to fix.
Just putting it out there for anyone else.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1631 | |
1063 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.