Websense and Fortinet

rsl-nsg
rsl-nsg used Ask the Experts™
on
I'm trying to setup web filtering with Websense appliance and a fortinet 300c firewall.   I have had several long conference calls with both companies and it's still not working.  Websense said they will only support policy based routing with the Fortinet.  They only support WCCP with Cisco.  Fortinet put in the rule, yet NO traffic is  hitting the websense appliance.  When we put websense appliance as a proxy in IE it works fine.  That's not a solution though as we have people using every browser out there.  Does anybody have an experience with this or suggestions?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Commented:
First off you will need to make sure you have both websense configured and the fortinet.

Here is a quick guide for the fortinet : http://kb.fortinet.com/kb/viewContent.do?externalId=FD32926

 WCCP on Websense can be found in the Content gateway documentation:
http://www.websense.com/content/support/library/web/v78/wcg_help/first.aspx


The next step is to setup debugs on the firewall to see if packets are redirecting to the appliance properly.

If thats working, you can use tcpdump from the Websense toolbox to see if packets are getting to websense and what responses are being sent out. That should help isolate the cause and make it possible to engage the correct support team.

Beyond that, I can say Websense WCCP support i designed for Cisco, and can work with other vendors but they must be RFC complaint to the T. Best of luck and if nothing works remember there are other ways to do Transparent proxying using websense such as using the network agent.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial