SSL Deep Inspection Discussion

Forum|Forum|4 years ago
September 22, 2021
1 reply
3569 views

I know that I can check the certificate when I am browsing and see it's secured by the Fortinet certificate. I am mostly interested in seeing, for my own eyes, that its working for my Outlook POP3, IMAP SSL connections as well. I have combed through the logs and do not see anything within the log that it says SSL deep packet inspection is turned on. This can be that hard to show that it's working and make it part of the selling point of the UTM bundle.

Thoughts?

2021-09-22_13-54-43.jpg

TecnetRuss

Visitor III

This doesn't directly answer your specific question, but the way I demonstrate the value of DPI is to set up an Internet access policy with AV enabled and show that with DPI enabled the FortiGate blocks any attempt to download the EICAR antivirus test file over HTTPS. When you flip the policy to normal certificate inspection the EICAR file isn't blocked over HTTPS. This is also a good sanity check to make sure that DPI is properly protecting clients.

Russ

NSE7

PaddyAuthor

New Member

Thanks! Good idea!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded