Fortinet black logo

Administration Guide

Home FortiProxy 7.2.0 Administration Guide
7.2.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.0
7.0.17
7.0.0
2.0.0
1.2.0
1.1.0
1.0.0

ICAP Profile

ICAP Profile

Internet Content Adaptation Protocol (ICAP) is an application layer protocol that is used to offload tasks from the firewall to separate, specialized servers. For more information see RFC 3507.

If you enable ICAP in a policy, HTTP and HTTPS (if HTTPS inspection is supported) traffic that is intercepted by the policy is transferred to the ICAP server specified by the selected ICAP profile. Responses from the ICAP server are returned to the FortiProxy, and then forwarded to their destination

By default, ICAP is not visible in the GUI. See Feature Visibility for instructions on making it visible.

The ICAP Profile page allows you to view and configure ICAP profiles, which you can then apply to a policy.

If you enable ICAP in a security policy, HTTP traffic intercepted by the policy is transferred to the ICAP servers in the ICAP profile added to the policy. The FortiProxy unit acts as the surrogate and carries the ICAP responses from the ICAP server to the ICAP client. The ICAP client then responds back, and the FortiProxy unit determines the action that should be taken with these ICAP responses and requests.

You can configure ICAP profiles under Content Analyses > ICAP Profile.

Hover over the leftmost edge of the column heading to display the Configure Table icon, which you can use to select the columns to display or to reset all the columns to their default settings. You can also drag column headings to change their order.

The following options are available:

Create New

Create an ICAP profile. See Create or edit an ICAP profile.

Edit

Edit an ICAP profile. See Create or edit an ICAP profile.

Delete

Delete a profile or profiles.

Name

The name of the ICAP profile.

Request

Whether request processing is enabled or disabled.

Response

Whether response processing is enabled or disabled.

Streaming Content Bypass

Whether streaming media is allowed (enabled) to ignore offloading to the ICAP server.

Ref.

Displays the number of times the object is referenced to other objects.

To view the location of the referenced object, select the number in Ref.; the Object Usage window opens and displays the various locations of the referenced object.
Previous
Next

ICAP Profile

Internet Content Adaptation Protocol (ICAP) is an application layer protocol that is used to offload tasks from the firewall to separate, specialized servers. For more information see RFC 3507.

If you enable ICAP in a policy, HTTP and HTTPS (if HTTPS inspection is supported) traffic that is intercepted by the policy is transferred to the ICAP server specified by the selected ICAP profile. Responses from the ICAP server are returned to the FortiProxy, and then forwarded to their destination

By default, ICAP is not visible in the GUI. See Feature Visibility for instructions on making it visible.

The ICAP Profile page allows you to view and configure ICAP profiles, which you can then apply to a policy.

If you enable ICAP in a security policy, HTTP traffic intercepted by the policy is transferred to the ICAP servers in the ICAP profile added to the policy. The FortiProxy unit acts as the surrogate and carries the ICAP responses from the ICAP server to the ICAP client. The ICAP client then responds back, and the FortiProxy unit determines the action that should be taken with these ICAP responses and requests.

You can configure ICAP profiles under Content Analyses > ICAP Profile.

Hover over the leftmost edge of the column heading to display the Configure Table icon, which you can use to select the columns to display or to reset all the columns to their default settings. You can also drag column headings to change their order.

The following options are available:

Create New

Create an ICAP profile. See Create or edit an ICAP profile.

Edit

Edit an ICAP profile. See Create or edit an ICAP profile.

Delete

Delete a profile or profiles.

Name

The name of the ICAP profile.

Request

Whether request processing is enabled or disabled.

Response

Whether response processing is enabled or disabled.

Streaming Content Bypass

Whether streaming media is allowed (enabled) to ignore offloading to the ICAP server.

Ref.

Displays the number of times the object is referenced to other objects.

To view the location of the referenced object, select the number in Ref.; the Object Usage window opens and displays the various locations of the referenced object.
Previous
Next