00:00
>> In this video, you will learn how to add
00:00
an explicit proxy with
00:00
web caching to your wireless network.
00:00
An explicit proxy requires
00:00
all devices on the wireless network to connect to
00:00
the proxy at port 8080
00:00
before they can browse content on the Internet.
00:00
You can then add WAN optimization web caching
00:00
to reduce bandwidth use and improve performance.
00:00
First, you'll need to enable and configure
00:00
the proxy and WAN OPT
00:00
features in the FortiGate interface.
00:00
Go to "System", "Config", "Features".
00:00
Turn on Explicit Proxy and WAN Opt and
00:00
Cache and save the changes.
00:00
"Network", "Interfaces",
00:00
and edit the wireless interface
00:00
to enable Explicit Web Proxy.
00:00
Go-to "System", "Network", "Explicit "Proxy",
00:00
enable HTTP/HTTPS, and make sure
00:00
that the default firewall policy action is set to deny.
00:00
Next, go-to "Policy and Objects", "Policy",
00:00
"Explicit Proxy", to create
00:00
a new policy to govern the proxy settings.
00:00
Set Explicit Proxy Type to web
00:00
and the outgoing interface to
00:00
the Internet facing interface.
00:00
Set the rest to allow all traffic and enable web cache.
00:00
To use the web proxy,
00:00
all devices on the wireless network must be
00:00
configured to use the explicit proxy server.
00:00
The IP address of the server is the IP address of
00:00
the FortiGate's wireless
00:00
>> interface and the port is 8080.
00:00
open "Network preferences",
00:00
"Wi-Fi", "Advanced",
00:00
"Proxies", select "Web Proxy
00:00
HTTP" and enter the IP and port 8080.
00:00
Some web browsers may require
00:00
further configuration to use the proxy.
00:00
open "Internet Properties",
00:00
go to "Connections",
00:00
"LAN settings", and enable
00:00
and configure the proxy server.
00:00
Go to "Policy and Objects", "Policy",
00:00
"IPv4" to create a policy that denies
00:00
wireless traffic through HTTP and HTTPS,
00:00
forcing the traffic through the explicit proxy.
00:00
Set the incoming interface to the wireless interface
00:00
and the outgoing interface to
00:00
the Internet facing interface.
00:00
Set the service to HTTP and HTTPS,
00:00
and set the action to deny.
00:00
Save the policy and move it to the top of
00:00
the policy list so that it has the highest priority.
00:00
To confirm that the proxy is processing traffic,
00:00
attempt to connect to the Internet through
00:00
the wireless network without configuring your device.
00:00
Internet access will be blocked.
00:00
Configure your device to use
00:00
the proxy and connect to the Internet.
00:00
Then in the FortiGate interface,
00:00
go to "WAN Opt and Cache",
00:00
"Monitor", "WAN Opt Monitor".
00:00
You could see a summary of
00:00
web proxy traffic and bandwidth optimization.
00:00
Go to "WAN Opt and Cache",
00:00
"Cache Monitor" to view web caching activity.
00:00
Thank you for watching.
00:00
If you need further details you can visit
00:00
docs.fortinet.com at anytime to
00:00
access our complete documentation library.
