FortiGate: Inbound Deep Inspection/TLS Offloading

Поделиться
HTML-код
  • Опубликовано: 24 июл 2024
  • Inbound Deep Inspection is a port forwarding rule/VIP that differentiates itself by:
    1) Gaining visibility to HTTPS encrypted traffic
    2) Enabling HTTPS even if HTTP is the only protocol configured on the end server
    We will cover some scenarios and how to configure Inbound Deep Inspection
    0:00 Overview
    0:14 VIP vs. Inbound DPI
    0:47 Use Case #1
    2:50 Use Case #2
    3:54 Baseline Config
    4:40 Import Server Certificate
    6:12 SSL Profile
    6:35 Virtual Server
    8:58 Firewall Policy
    11:38 testing
  • НаукаНаука

Комментарии • 11

  • @trino4965
    @trino4965 Год назад +2

    Both content and quality are superb

  • @okuhlephambiliokuhlephambi2287
    @okuhlephambiliokuhlephambi2287 Год назад +2

    Your videos are amazing man best i have seen

  • @farhadahmadi4705
    @farhadahmadi4705 Год назад +2

    Thanks. Keep up the good work...!

  • @mattsharsing
    @mattsharsing Год назад +2

    Great video! Thanks.

  • @OOSULLIVAN
    @OOSULLIVAN Год назад

    In lieu of creating 2 https sessions (client to fw and fw to internal server), can one upload the internal server certificate on the firewall? Would this also allow the FW to decrypt traffic to the internal server? Or is it necessary for the client to connect to the FW first.

    • @tothepointfortinet3823
      @tothepointfortinet3823  Год назад +1

      Yes you can upload the server cert to the firewall and so that the firewall can decrypt the traffic -> this is the approach taken in this video. I do not know of a way to have this type of decryption visibility inbound without the client connecting to the firewall first when we using a port forwarding type scenario.

  • @tatianasoh6179
    @tatianasoh6179 Год назад +1

    good video, it helped me very well. Thanks

  • @jimmypayne8435
    @jimmypayne8435 Год назад

    Around the 12:50 mark, I get a bit confused. You are editing a web filter rule on an inbound traffic policy to test (in normal circumstances) what would be incoming traffic. Did I miss something or just not had enough coffee yet?

    • @tothepointfortinet3823
      @tothepointfortinet3823  Год назад

      Yeah good point, I think it was valid to prove the test but a better use case might have been a virus upload for example

  • @hafezelashry2275
    @hafezelashry2275 8 месяцев назад

    is the load balance feature need to license ?

Следующие
Автовоспроизведение
Deep Inspection on FortiGate firewall with 5 Examples21:38Deep Inspection on FortiGate firewall with 5 Examples
Deep Inspection on FortiGate firewall with 5 ExamplesToThePoint Fortinet
Просмотров 19 тыс.
SSL/TLS Offloading Explained | By Marco Essomba, Founder & CTO @BlockAPT5:08SSL/TLS Offloading Explained | By Marco Essomba, Founder & CTO @BlockAPT
SSL/TLS Offloading Explained | By Marco Essomba, Founder & CTO @BlockAPTMarco Essomba
Просмотров 7 тыс.
FortiGate Firewall: Deep Packet Inspection / SSL/TLS MITM Explored14:18FortiGate Firewall: Deep Packet Inspection / SSL/TLS MITM Explored
FortiGate Firewall: Deep Packet Inspection / SSL/TLS MITM ExploredFortiBytes
Просмотров 4,3 тыс.
Now Loading... - Scott The Woz17:41Now Loading... - Scott The Woz
Now Loading... - Scott The WozScott The Woz
Просмотров 695 тыс.
Phasmophobia but It's the STINKIEST of Ghosts40:44Phasmophobia but It's the STINKIEST of Ghosts
Phasmophobia but It's the STINKIEST of GhostsTwo Much Grian
Просмотров 160 тыс.
I Made The Strongest Account In The Game22:04I Made The Strongest Account In The Game
I Made The Strongest Account In The GameTorvestaRS
Просмотров 214 тыс.
eliminate the WHOLE lobby with the NEW bomber role...24:50eliminate the WHOLE lobby with the NEW bomber role...
eliminate the WHOLE lobby with the NEW bomber role...Disguised Toast
Просмотров 586 тыс.
Fortinet: Port Forwarding(Virtual IP) with FortiGate firewall7:46Fortinet: Port Forwarding(Virtual IP) with FortiGate firewall
Fortinet: Port Forwarding(Virtual IP) with FortiGate firewallToThePoint Fortinet
Просмотров 25 тыс.
Fortigate Operator | Virtual Server Load Balancer23:14Fortigate Operator | Virtual Server Load Balancer
Fortigate Operator | Virtual Server Load BalancerSilesio Carvalho
Просмотров 2,4 тыс.
Fortinet: FortiGate Comprehensive Getting Started Guide39:16Fortinet: FortiGate Comprehensive Getting Started Guide
Fortinet: FortiGate Comprehensive Getting Started GuideToThePoint Fortinet
Просмотров 19 тыс.
What is Deep Inspection?8:35What is Deep Inspection?
What is Deep Inspection?ToThePoint Fortinet
Просмотров 3,2 тыс.
Fortigate (Deep Packet) SSL Inspection15:53Fortigate (Deep Packet) SSL Inspection
Fortigate (Deep Packet) SSL InspectionPeteNetLive
Просмотров 15 тыс.
Fortinet: Configuring HA on FortiGate firewalls10:47Fortinet: Configuring HA on FortiGate firewalls
Fortinet: Configuring HA on FortiGate firewallsToThePoint Fortinet
Просмотров 28 тыс.
HomeLab SSL certificates for FREE with minimal effort19:41HomeLab SSL certificates for FREE with minimal effort
HomeLab SSL certificates for FREE with minimal effortPerkelator
Просмотров 26 тыс.
5 Considerations: Sizing Your Next-Gen Firewall (NGFW)7:165 Considerations: Sizing Your Next-Gen Firewall (NGFW)
5 Considerations: Sizing Your Next-Gen Firewall (NGFW)The CISO Perspective
Просмотров 51 тыс.
FortiGate/FortiSwitch 802.1x port authentication (and MAB) with Windows RADIUS17:07FortiGate/FortiSwitch 802.1x port authentication (and MAB) with Windows RADIUS
FortiGate/FortiSwitch 802.1x port authentication (and MAB) with Windows RADIUSToThePoint Fortinet
Просмотров 11 тыс.
Easy Art with AR Drawing App - Step by step for Beginners00:27Easy Art with AR Drawing App - Step by step for Beginners
Easy Art with AR Drawing App - Step by step for BeginnersMelli Art School
Просмотров 15 млн
iOS 18 Beta 4 обновление! Что нового iOS 18 Beta 4? Нагрев ушел, оптимизация, обзор iOS 18 Beta 409:41iOS 18 Beta 4 обновление! Что нового iOS 18 Beta 4? Нагрев ушел, оптимизация, обзор iOS 18 Beta 4
iOS 18 Beta 4 обновление! Что нового iOS 18 Beta 4? Нагрев ушел, оптимизация, обзор iOS 18 Beta 4AppleTheme
Просмотров 21 тыс.
Выбор видеокарты летом 2024 года. AMD или Nvidia? Где делать Сборку ПК, чтобы не переплатить?11:11Выбор видеокарты летом 2024 года. AMD или Nvidia? Где делать Сборку ПК, чтобы не переплатить?
Выбор видеокарты летом 2024 года. AMD или Nvidia? Где делать Сборку ПК, чтобы не переплатить?Алексей Кулич
Просмотров 25 тыс.
Что если робот Cozmo увидит огромную африканскую Саранчу?10:40Что если робот Cozmo увидит огромную африканскую Саранчу?
Что если робот Cozmo увидит огромную африканскую Саранчу?Alex Boyko
Просмотров 146 тыс.
$1 vs $100,000 Slow Motion Camera!00:44$1 vs $100,000 Slow Motion Camera!
$1 vs $100,000 Slow Motion Camera!Hafu Go
Просмотров 27 млн
S24 Ultra and IPhone 14 Pro Max telephoto shooting comparison #shorts00:15S24 Ultra and IPhone 14 Pro Max telephoto shooting comparison #shorts
S24 Ultra and IPhone 14 Pro Max telephoto shooting comparison #shortsPhotographer Army
Просмотров 9 млн
Just Connect Your TV and Watch All the World's Channels in Full HD Format14:45Just Connect Your TV and Watch All the World's Channels in Full HD Format
Just Connect Your TV and Watch All the World's Channels in Full HD FormatCreative Passion 88
Просмотров 543 тыс.
Знали Секрет Кружка зарядки Samsung?🔋 #Shorts00:27Знали Секрет Кружка зарядки Samsung?🔋 #Shorts
Знали Секрет Кружка зарядки Samsung?🔋 #Shortslifegoodd
Просмотров 420 тыс.