Explicit Proxy

Video Activity

In this video, you will learn how to add an explicit proxy with web caching to your wireless network. An explicit proxy requires all devices on the wireless network to connect to the proxy at port 8080 before they can browse content on the Internet. WAN Optimization web caching can be added to reduce bandwidth use and improve performance. Visit For...

Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
1 hour 35 minutes
Difficulty
Beginner
CEU/CPE
2
Video Description

In this video, you will learn how to add an explicit proxy with web caching to your wireless network. An explicit proxy requires all devices on the wireless network to connect to the proxy at port 8080 before they can browse content on the Internet. WAN Optimization web caching can be added to reduce bandwidth use and improve performance. Visit Fortinet's documentation library at http://docs.fortinet.com.

Video Transcription
00:00
>> In this video, you will learn how to add
00:00
an explicit proxy with
00:00
web caching to your wireless network.
00:00
An explicit proxy requires
00:00
all devices on the wireless network to connect to
00:00
the proxy at port 8080
00:00
before they can browse content on the Internet.
00:00
You can then add WAN optimization web caching
00:00
to reduce bandwidth use and improve performance.
00:00
First, you'll need to enable and configure
00:00
the proxy and WAN OPT
00:00
features in the FortiGate interface.
00:00
Go to "System", "Config", "Features".
00:00
Turn on Explicit Proxy and WAN Opt and
00:00
Cache and save the changes.
00:00
Now go to "System",
00:00
"Network", "Interfaces",
00:00
and edit the wireless interface
00:00
to enable Explicit Web Proxy.
00:00
Go-to "System", "Network", "Explicit "Proxy",
00:00
enable HTTP/HTTPS, and make sure
00:00
that the default firewall policy action is set to deny.
00:00
Next, go-to "Policy and Objects", "Policy",
00:00
"Explicit Proxy", to create
00:00
a new policy to govern the proxy settings.
00:00
Set Explicit Proxy Type to web
00:00
and the outgoing interface to
00:00
the Internet facing interface.
00:00
Set the rest to allow all traffic and enable web cache.
00:00
To use the web proxy,
00:00
all devices on the wireless network must be
00:00
configured to use the explicit proxy server.
00:00
The IP address of the server is the IP address of
00:00
the FortiGate's wireless
00:00
>> interface and the port is 8080.
00:00
>> In Mac OS X,
00:00
open "Network preferences",
00:00
"Wi-Fi", "Advanced",
00:00
"Proxies", select "Web Proxy
00:00
HTTP" and enter the IP and port 8080.
00:00
Some web browsers may require
00:00
further configuration to use the proxy.
00:00
In Windows 7,
00:00
open "Internet Properties",
00:00
go to "Connections",
00:00
"LAN settings", and enable
00:00
and configure the proxy server.
00:00
Go to "Policy and Objects", "Policy",
00:00
"IPv4" to create a policy that denies
00:00
wireless traffic through HTTP and HTTPS,
00:00
forcing the traffic through the explicit proxy.
00:00
Set the incoming interface to the wireless interface
00:00
and the outgoing interface to
00:00
the Internet facing interface.
00:00
Set the service to HTTP and HTTPS,
00:00
and set the action to deny.
00:00
Save the policy and move it to the top of
00:00
the policy list so that it has the highest priority.
00:00
To confirm that the proxy is processing traffic,
00:00
attempt to connect to the Internet through
00:00
the wireless network without configuring your device.
00:00
Internet access will be blocked.
00:00
Configure your device to use
00:00
the proxy and connect to the Internet.
00:00
Then in the FortiGate interface,
00:00
go to "WAN Opt and Cache",
00:00
"Monitor", "WAN Opt Monitor".
00:00
You could see a summary of
00:00
web proxy traffic and bandwidth optimization.
00:00
Go to "WAN Opt and Cache",
00:00
"Cache Monitor" to view web caching activity.
00:00
Thank you for watching.
00:00
If you need further details you can visit
00:00
docs.fortinet.com at anytime to
00:00
access our complete documentation library.
Up Next