Hi
I want to secure vlans to vlans traffic with my 200f fgt. Which security profiles can i enable between vlans?
Hello @rezafathi ,
In my opinion, IPS and AV are enough for these traffics. You can configure it with the default profile on your policy or you can customize the profile according to your preferences.
Thanks. Should i use deep ssl profile or not?
Hello @rezafathi ,
This is generally not recommended for internal traffic. If you do a deep inspection, many applications may not work and you will need to install a certificate on each client.
If i dont use deep inspection av would not work
This is partly true. If the protocol used is not secure, it will detect viruses. However, many protocols are sensitive. If you do deep inspection it won't work. That's why deep inspection is often used for web traffic.
So can i disable ssl inspection?
My advice is, yes you can close.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.