WAN optimization and web caching Web caching
FortiGate Version 4.0 Administration Guide
01-400-89802-20090424 613
http://docs.fortinet.com/ • Feedback
For web caching to work, the WAN optimization tunnel must accept HTTP (and optionally
HTTPS) traffic. To do this, the active rule on the client side must include the ports used for
HTTP (and HTTPS) traffic. Set Protocol set to HTTP to perform protocol optimization of
the HTTP traffic. You can also enable SSL offloading, secure tunneling, and add an
authentication group.
Figure 408: Adding an active WAN optimization rule compatible with web caching
To configure the client (active) FortiGate unit
1 Go to WAN Opt. & Cache > Peer and enter a Local Host ID for the client FortiGate unit.
2 Select Create New and add a Peer Host ID and the IP address for the server side
FortiGate unit.
3 Go to Firewall > Policy and add a firewall policy that accepts traffic to be web cached.
4 Go to WAN Opt. & Cache > Rule and select Create New.
5 Configure the rule.
6 Select OK to save the rule.
The rule is added to the bottom of the WAN optimization list.
7 If required, move the rule to a different position in the list.
See “Moving a rule to a different position in the rule list” on page 607.
Local Host ID Client_Side
Peer Host ID Server_Side
IP Address 172.20.20.1
Mode Full Optimization
Source 172.20.120.0
Destination 192.168.10.0
Port 1-65535
Auto-Detect Active
Protocol HTTP
Transparent Mode Enable
Enable Byte Caching Enable
To Next Page
Loading...