Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ramiroATC
New Contributor

Created on ‎04-23-2023 08:51 PM Edited on ‎04-26-2023 09:03 AM

SSL/SSH inspection

.

Labels:
223
0 Kudos
1 REPLY 1
jhussain_FTNT
Staff
Staff

Created on ‎04-23-2023 11:19 PM

Hi,

 

Deep inspection (also known as SSL/SSH inspection) is typically applied to outbound policies where destinations are unknown. Depending on your policy requirements, you can configure the following:

  • Which CA certificate will be used to decrypt the SSL encrypted traffic
  • Which SSL protocols will be inspected
  • Which ports will be associated with which SSL protocols for inspection
  • Whether or not to allow invalid SSL certificates
  • Whether or not SSH traffic will be inspected
  • Which addresses or web category allowlists can bypass SSL inspection

Kindly refer the below document which explain about the SSL/SSH inspection.

https://docs.fortinet.com/document/fortigate/7.2.4/administration-guide/929997/ssl-ssh-inspection

 

Regards

Jamal

199
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.