Fortigate Request Filter By Domain

Hello Experts

I have a fortigate 80c model and i want to manage two domains on that same router.
The two domains will have web servers,
And i want to know, is there any way to filter web request that came into the router by domain name instead of IP addresses?

Thank you.
IT_Group1Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

myramuCommented:
Hello,

Could you please explain bit more clear?
Do you want to route the traffic based on domain name like in apache (Only one public IP required)?

IT_Group1Author Commented:
Hi myramu

Exactly what you wrote i have one public IP that i want to assign to a new domain,
and i want that the fortigate will have the option to filter web based request by domain name.

is this possible ?
myramuCommented:
It is not possible to route the traffic based on domain like in apache with a single IP address. FortiGate destination nat (VIP) just looks for IP address and port.

You can host the websites on different ports and use port forwarding or use apache server internally.

IT_Group1Author Commented:
Hi myramu

i forgot to Mention that i will assign a wildcard SSL certificate to the new domain,
and i need the web requests to be secured (port 443).
i know that i will have to use the VIP to port fwd the request,
what i am asking is will i be able to answer the requests with one web server (Apache)
and one dns server that will hold ALL of the sub domains ?

can you point me to the right configuration ?

thank you.
myramuCommented:
Yes, it is possible. Just you need to configure the DNS to point to the right IP address and FortiGate will forward to the internal apache server.

Refer the following article sto configure VIP on FortiGate:
http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD30904
http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=11765

Good Luck!

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.