Create a new FortiProxy firewall policy
FortiProxy firewall policies are only available in FortiProxy ADOMs. See FortiProxy ADOMs. For more information on configuring a FortiProxy firewall policy, see the FortiProxy Administration Guide on the Fortinet Document Library. |
In FortiManager, you can create FortiProxy policies while in a FortiProxy ADOM.
To create a new FortiProxy policy:
- If using ADOMs, ensure that you are in the correct ADOM.
- Go to Policy & Objects > Policy Packages.
- In the tree menu for the policy package in which you will be creating the new policy, select FortiProxy Policy.
- Click Create New.
- Enter the following information:
Option
Description
Type
Select the policy type from Explicit, Transparent, FTP, SSH Tunnel, SSH Proxy, and Wanopt.
Name
Enter a name for the policy.
Incoming Interface
Select the incoming interface(s) from the object selector pane.
Outgoing Interface
Select the outgoing interface(s) from the object selector pane.
Source
Select the source.
Destination
Select the destination.
Schedule
Select the schedule.
Service
Click the plus icon to add services to the policy, and then add services from the service selector pane.
Action
Select a policy action. Available actions include Accept, Deny, Redirect, and Isolate.
Depending on which option is selected, additional settings are available. For more information, see the FortiProxy Administration Guide on the Fortinet Document Library.
Enable Policy Matching Pass Through
Check the box to enable policy matching pass through.
Advanced Options
Expand to view and configure advanced options for the policy.
Change Note
Add a description of the changes being made to the policy. This field is required. - Click OK to create the policy. You can select to enable or disable the policy in the right-click menu. When disabled, a disabled icon will be displayed in the Seq.# column to the left of the number. By default, policies will be added to the bottom of the list, but above the implicit policy.