ZTNA TCP Forwarding - Windows host file didn`t update
Hi, I`m fairly new with the fortinet products, currently testing some features like EMS connected to the FortiGate via Secure Fabric and ZTNA and i`m facing problem with access to the desired https but with the TCP Forwarding in FortiGate(from what i understand i i can use HTTPS instead of TCP forwarding but this force me to create DNS for example CloudFlare )
Long story short i want to be able access internal website via ZTNA without additional DNS entries. I found in the documentation that i`m suposed to create in EMS ZTNA Destination, telemetry should update the host file located in C:\Windows\System32\drivers\etc.
I try this step by step but the host file didn`t update and my site shows only ZTNA Access Denied. Details: API Gateway Denied
Upon creating the ZTNA rules, two new entries are added to the Windows PC’s host file in folder C:\Windows\System32\drivers\etc. View the file, and observe the new entries for the virtual IP and FQDN pairing for each ZTNA connection rule.
Howdy Tom. I'm wondering how you made out? I didn't see anything particularly helpful in the responses to your question, and I am running into the exact same problem. I follow the same guide you are using and never see the hosts file entries that are supposed to get written. Did you make any progress?
Hi bmduncan33, from Fortinet technician i have heard that in the newest version of forticlient that file is not updating enymore. Check this link link in my case it missed configuration in firewall proxy
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.