IPv6 Addresses

Leave a reply

Explicit Proxy Addresses

This category of address is different from the other addresses in that it is not designed to be used in the normal firewall policy configuration. It is intended to be used only with explicit web proxies.

In some respects they can be like a FQDN addresses in that they refer to an alpha-numeric string that is assigned to an IP address, but then goes an additional level of granularity by using additional information and criteria to further specify locations or types of traffic within the website itself. In depth information on Explicit Proxy Addressing can be found in WAN Optimization, but it is worth laying out the steps of how to create an address object for this category.

 

Creating an Explicit Proxy address

1. Go to Policy & Objects > Addresses.

2. Select Create New. A drop down menu is displayed. Select Address.

3. In the Category field, chose Explicit Proxy Address.

4. Input a Name for the address object.

5. For the Type field, select one of the options from the drop down menu.

Within the Explicit Proxy Address category there are 8 types of addresses. Each of these types will have associated field(s) that also need to have values entered to make the object specific to it’s address.

 

Type = URL Pattern

  • In the Host field, choose from drop down menu
  • In the URL Path Regex field, enter the appropriate string

 

Host Regex Match

  • In the Host Regex Pattern field, enter the appropriate string

 

URL Category

  • In the Host field, choose from drop down menu
  • In the URL Category field, choose from drop down menu

 

HTTP Method

  • In the Host field, choose from drop down menu
  • In the Request Method field, choose from drop down menu

 

The options are:

  • CONNECT
  • DELETE
  • GET
  • HEAD
  • OPTIONS
  • POST
  • PUT
  • TRACE

 

 

User Agent

  • In the Host field, choose from drop down menu
  • In the User Agent field, choose from drop down menu

 

The options are:

  • Apple Safari
  • Google Chrome
  • Microsoft Internet Explorer or Spartan
  • Mozilla Firefox
  • Other browsers

 

HTTP Header

  • In the Host field, choose from drop down menu
  • In the Header Name field, enter the appropriate string value
  • In the Header Regex field, enter the appropriate string value

 

Advanced (Source)

  • In the Host field, choose from drop down menu
  • In the Request Method field, choose from drop down menu (see HTTP Method type for option list)
  • In the User Agent field, choose from drop down menu (see User Agent type for option list)
  • In the Header Group table, create, edit or delete Header Name strings and associated Header Regex strings

 

Advance (Destination)

  • In the Host field, choose from drop down menu
  • In the Host Regex Pattern field, enter the appropriate string
  • In the URL Category field, choose from drop down menu

6. Select the desired on/off toggle setting for Show in Address List. If the setting is enabled the address will appear in drop down menus where it is an option.

7. Input any additional information in the Comments field.

8. Press OK.

 


Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

Pages: 1 2 3

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.