Solved

Websense and Fortinet

Posted on 2014-03-04
1
2,374 Views
Last Modified: 2014-04-03
I'm trying to setup web filtering with Websense appliance and a fortinet 300c firewall.   I have had several long conference calls with both companies and it's still not working.  Websense said they will only support policy based routing with the Fortinet.  They only support WCCP with Cisco.  Fortinet put in the rule, yet NO traffic is  hitting the websense appliance.  When we put websense appliance as a proxy in IE it works fine.  That's not a solution though as we have people using every browser out there.  Does anybody have an experience with this or suggestions?
0
Comment
Question by:rsl-nsg
1 Comment
 
LVL 10

Accepted Solution

by:
0xSaPx0 earned 500 total points
ID: 39942607
First off you will need to make sure you have both websense configured and the fortinet.

Here is a quick guide for the fortinet : http://kb.fortinet.com/kb/viewContent.do?externalId=FD32926

 WCCP on Websense can be found in the Content gateway documentation:
http://www.websense.com/content/support/library/web/v78/wcg_help/first.aspx


The next step is to setup debugs on the firewall to see if packets are redirecting to the appliance properly.

If thats working, you can use tcpdump from the Websense toolbox to see if packets are getting to websense and what responses are being sent out. That should help isolate the cause and make it possible to engage the correct support team.

Beyond that, I can say Websense WCCP support i designed for Cisco, and can work with other vendors but they must be RFC complaint to the T. Best of luck and if nothing works remember there are other ways to do Transparent proxying using websense such as using the network agent.
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In this increasingly digital world, security hacks are no longer just a threat, but a reality. As we've witnessed with Target's big identity hack 2013, Heartbleed in 2015, and now Cloudbleed, companies and their leaders need to prepare for the unthi…
Many businesses neglect disaster recovery and treat it as an after-thought. I can tell you first hand that data will be lost, hard drives die, servers will be hacked, and careless (or malicious) employees can ruin your data.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question