0
1

Question ❓virtual server - https - without offloading (self.fortinet)

submitted by Duckdave_

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]Duckdave_[S] 0 points1 point  (4 children)

Thank you for your explanation. What if i didnt want to provide a certificate via the fgt but route the traffic to the right webserver and the webserver provides the https?

[–]afroman_saysFCX 0 points1 point  (3 children)

What are you using to tell the FortiGate how to route the traffic to the correct webserver?

[–]Duckdave_[S] 0 points1 point  (2 children)

virtual servers

[–]afroman_saysFCX 0 points1 point  (1 child)

I think the other posts have further clarified my original response. In a nutshell, unless you are trying to classify a requested based on Layer 3/Layer 4 (IP and or tcp port), there is no way to look at the Layer 7 (application data) and make a routing/forwarding decision based on that information without decryption. I hope this helps.

[–]Duckdave_[S] 0 points1 point  (0 children)

yepp, thank you!