Fortinet black logo

Administration Guide

Home FortiProxy 7.0.0 Administration Guide
7.0.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.0
7.0.17
7.0.0
2.0.0
1.2.0
1.1.0
1.0.0

Policy Test

Policy Test

You can check the configuration of explicit web proxy policies and transparent firewall policies to confirm that they are set up correctly.

The combination of policy type and source IP address forms the source traffic to test.

If a URI or HTTP header is specified as the destination, the policy test uses a DNS lookup to determine the actual IP address and port number of the destination traffic. If the clientʼs DNS lookup differs from the deviceʼs DNS lookup, the policy used for the test might be different that the policy used on the clientʼs traffic.

To test a policy:

  1. Go to Policy & Objects > Policy Test.

  2. Configure the following settings:

    Policy Test

    Select whether you want to test an Explicit or Transparent policy.

    Source IP

    Enter the source IP address.

    Web Proxy

    If you selected Explicit, select web-proxy or search for an explicit web proxy. To create an explicit web proxy, see Create or edit an explicit proxy.

    Source Interface

    If you selected Transparent, enter the source interface.

    Destination

    Select IP:Port, URI, or HTTP Header and enter the destination.

    User & Group

    If you want to test a specific user or user group, enable User & Group and then select one user or user group.

  3. Click OK. The results show the policy configuration if a policy matches the parameters.

Previous
Next

Policy Test

You can check the configuration of explicit web proxy policies and transparent firewall policies to confirm that they are set up correctly.

The combination of policy type and source IP address forms the source traffic to test.

If a URI or HTTP header is specified as the destination, the policy test uses a DNS lookup to determine the actual IP address and port number of the destination traffic. If the clientʼs DNS lookup differs from the deviceʼs DNS lookup, the policy used for the test might be different that the policy used on the clientʼs traffic.

To test a policy:

  1. Go to Policy & Objects > Policy Test.

  2. Configure the following settings:

    Policy Test

    Select whether you want to test an Explicit or Transparent policy.

    Source IP

    Enter the source IP address.

    Web Proxy

    If you selected Explicit, select web-proxy or search for an explicit web proxy. To create an explicit web proxy, see Create or edit an explicit proxy.

    Source Interface

    If you selected Transparent, enter the source interface.

    Destination

    Select IP:Port, URI, or HTTP Header and enter the destination.

    User & Group

    If you want to test a specific user or user group, enable User & Group and then select one user or user group.

  3. Click OK. The results show the policy configuration if a policy matches the parameters.

Previous
Next