firewall : ssl-ssh-profile : config ssl-server
 
config ssl-server
Configure ssl server settings for use with the secure protocols (https, ftps, pop3s, smtps).
Variable
Description
Default
edit <table_id>
Enter a number to identify this SSL server in the list of configured SSL servers.
 
ftps-client-cert-request {block | bypass | inspect}
Select what action is taken by the FortiGate SSL proxy when the client certificate request fails during the FTPS client handshake.
SSL sessions that use client-certificates bypass the SSL inspection by default. This command offers the options to inspect or block that traffic.
bypass
https-client-cert-request {block | bypass | inspect}
Select what action is taken by the FortiGate SSL proxy when the client certificate request fails during the HTTPS client handshake.
SSL sessions that use client-certificates bypass the SSL inspection by default. This command offers the options to inspect or block that traffic.
bypass
imaps-client-cert-request {block | bypass | inspect}
Select what action is taken by the FortiGate SSL proxy when the client certificate request fails during the IMAPS client handshake.
SSL sessions that use client-certificates bypass the SSL inspection by default. This command offers the options to inspect or block that traffic.
bypass
ip <ipv4_addr>
Enter the IP address of the SSL server.
 
pops3-client-cert-request {block | bypass | inspect}
Select what action is taken by the FortiGate SSL proxy when the client certificate request fails during the POP3S client handshake.
SSL sessions that use client-certificates bypass the SSL inspection by default. This command offers the options to inspect or block that traffic.
bypass
smtps-client-cert-request {block | bypass | inspect}
Select what action is taken by the FortiGate SSL proxy when the client certificate request fails during the SMTPS client handshake.
SSL sessions that use client-certificates bypass the SSL inspection by default. This command offers the options to inspect or block that traffic.
bypass
ssl-other-client {block | bypass | inspect}
Select what action is taken by the FortiGate SSL proxy when the client certificate request fails during the client handshake for SSL protocols other than those above.
SSL sessions that use client-certificates bypass the SSL inspection by default. This command offers the options to inspect or block that traffic.
bypass