Hi all,I have read some post to try to configure my fortigate 600E like
a reverse proxy. The posts are closed, and that is the reason why I
opening this.. I would like to emulate a reverse proxy to connect to
internal servers (not DMZ servers) using ...
Hi all ¡¡ I have fortigate and fortianalyzer. I need to control traffic
sent by servers in one Fortigate interface. For that, I have a shared
shaper. I would like to receive an email when the shaper is working
(droping packets) cause the server excee...
Hi all ¡¡ I have not worked with BGP on a regular basis and I would like
to know your opinion. In brief, I'm going to connect my firewall to 2
different ISPs routers(same provider) and I'm going to obtain from each
of them a default route (0.0.0.0). ...
Hi all¡ I would like to protect some of my public HTTPS servers from DoS
Attacks. The question I have, is how to check the normal use of my
servers under normal conditions so I can configure correct tresholds to
adapt them to my scenario. I imagine t...
Hi all ¡¡I want to configure 2 stand alone fortiswitches, forming an
MCLAG with ICL. Afther that, I want to define 3 VLANS, each one with a
layer 3 address. For example: 192.168.1.1/24 Vlan 1192.168.2.1/24 Vlan
2192.168.3.1/24 Vlan 3 The fortiswitch ...
Thanks pminarik. In that case the answer is "yes, with Virtual server in
policy in proxy mode, you can do a reverse proxy, the clients doesn't
stablish direct connections to final servers in any case. The
connections are from fortigate (reverse proxy...
> If I check fortigate sessions I see a direct client server connection
stablishedWhat I mean is that I don't see two connections
(firewall->client and Firewall-->server). What I see is: Client-->Server
and, cause for this reason I'm not sure if tcp ...
Thanks for your help¡From my lack of knowledge a virtual server it is
similar to a load balancer. But I thought that it doesn't proxi
connections, normally. I know that similar ports and IP could not mean
that traffic is not proxied, but I tried to c...
Thanks AEK. I will read the article carefully. But it talks about VIPs
and NAT... The problem is not to change the IP, because this is just a
NAT. What I looking for is that the TCP connection from the client is
not directly stablished with real serv...
