FortiOS 5.4 Handbook – Fortinet GURU

CSF – Cooperative Security Fabric

CSF – Cooperative Security Fabric Cooperative Security Fabric (CSF) – also known as a Fortinet Security Fabric – spans across an entire network linking different security sensors and tools together to collect, coordinate, and respond to malicious behavior in real time. CSF can be used to coordinate the behavior of […]

WCCP Diagnose commands

Diagnose commands The following get and diagnose commands are available for troubleshooting WAN optimization, web cache, explicit proxy and WCCP. get test {wad | wccpd} <test_level> Display usage information about WAN optimization, explicit proxy, web cache, and WCCP applications. Use <test_level> to display different information. get test wad <test_level> […]

Troubleshooting WCCP

Troubleshooting WCCP Two types of debug commands are available for debugging or troubleshooting a WCCP connection between a FortiGate unit operating as a WCCP router and its WCCP cache engines. Real time debugging The following commands can capture live WCCP messages: diag debug en diag debug application wccpd <debug […]

WCCP Messages

WCCP Messages When the WCCP service is active on a web cache server it periodically sends a WCCP HERE I AM broadcast or unicast message to the FortiGate unit operating as a WCCP router. This message contains the following information: Web cache identity (the IP address of the web cache […]

WCCP packet flow

WCCP packet flow The following packet flow sequence assumes you have configured a FortiGate unit to be a WCCP server and one or more FortiGate units to be WCCP clients. 1. A user’s web browser sends a request for web content. 2. The FortiGate unit configured as a WCCP server […]

Example caching HTTP sessions on port 80 and HTTPS sessions on port 443 using WCCP

Example caching HTTP sessions on port 80 and HTTPS sessions on port 443 using WCCP This example configuration is the same as thatdescribed in Example caching HTTP sessions on port 80 using WCCP on page 2948 except that WCCP now also cached HTTPS traffic on port 443. To cache HTTP and […]

WCCP configuration overview

WCCP configuration overview To configure WCCP you must create a service group that includes WCCP servers and clients. WCCP servers intercept sessions to be cached (for example, sessions from users browsing the web from a private network). To intercept sessions to be cached the WCCP server must include a security […]

Other WCCP service group options

Other WCCP service group options In addition to using WCCP service groups to define the types of traffic to be cached by WCCP the following options are available for servers and clients. Server configuration options The server configuration must include the router-id, which is the WCCP server IP address. […]