Solved

Websense and Fortinet

Posted on 2014-03-04
1
2,320 Views
Last Modified: 2014-04-03
I'm trying to setup web filtering with Websense appliance and a fortinet 300c firewall.   I have had several long conference calls with both companies and it's still not working.  Websense said they will only support policy based routing with the Fortinet.  They only support WCCP with Cisco.  Fortinet put in the rule, yet NO traffic is  hitting the websense appliance.  When we put websense appliance as a proxy in IE it works fine.  That's not a solution though as we have people using every browser out there.  Does anybody have an experience with this or suggestions?
0
Comment
Question by:rsl-nsg
1 Comment
 
LVL 10

Accepted Solution

by:
0xSaPx0 earned 500 total points
ID: 39942607
First off you will need to make sure you have both websense configured and the fortinet.

Here is a quick guide for the fortinet : http://kb.fortinet.com/kb/viewContent.do?externalId=FD32926

 WCCP on Websense can be found in the Content gateway documentation:
http://www.websense.com/content/support/library/web/v78/wcg_help/first.aspx


The next step is to setup debugs on the firewall to see if packets are redirecting to the appliance properly.

If thats working, you can use tcpdump from the Websense toolbox to see if packets are getting to websense and what responses are being sent out. That should help isolate the cause and make it possible to engage the correct support team.

Beyond that, I can say Websense WCCP support i designed for Cisco, and can work with other vendors but they must be RFC complaint to the T. Best of luck and if nothing works remember there are other ways to do Transparent proxying using websense such as using the network agent.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Each year, investment in cloud platforms grows more than 20% (https://www.immun.io/hubfs/Immunio_2016/Content/Marketing/Cloud-Security-Report-2016.pdf?submissionGuid=a8d80a00-6fee-4b85-81db-a4e28f681762) as an increasing number of companies begin to…
In this increasingly digital world, security hacks are no longer just a threat, but a reality. As we've witnessed with Target's big identity hack 2013, Heartbleed in 2015, and now Cloudbleed, companies and their leaders need to prepare for the unthi…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

837 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question