Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiTester 7.3.0 Administration Guide
    7.3.0
    7.4.2
    7.4.1
    7.4.0
    7.3.2
    7.3.0
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.1.0
    7.0.0

    Starting a Gmail test

    Starting a Gmail test

    The Gmail test establishes a TCP connection (three-way handshake), sends one email by Gmail and closes the TCP connection.

    To start a Gmail test:
    1. Go to Cases > Performance Testing > Application > Gmail to display the test case summary page.
    2. Click + Create New to display the Select case options dialog box.
    3. In the popup dialog, for the Network Config option, select the network template you have created in Cases > Security Testing > Objects > Networks. Then the network related options will automatically be filled. See Using network configuration templates for how to create a network template.
    4. Select a Certificate Group if applicable.
    5. Click OK to continue.
    6. Configure the test case options described below.
    7. Click Start to run the test case.

    FortiTester saves the configuration automatically so you can run the test again later. You can also click Save to save the test case without running it.

    Tip1: You can also copy an existing case, and change its settings to create a new case. In the case list, click Clone to clone the configuration. Only the case name is different from the original case.

    Tip 2: You can add or edit a comment when the test is running. This comment can be used to search for the test result in the Results page. This is useful especially when the test runs for a long time.

    Application Test Case common options

    Application Test Case configuration specific to Gmail Test

    Settings Guidelines
    Client Profile
    Address The sender’s email address.
    Password The sender’s email password.
    To The receiver’s email address.
    Subject The subject of the mail. The maximum length is 256 bytes.
    Body The body of the mail. The maximum length is 512 bytes.

    User Agent

    Set the value of the user agent in the HTTP header.
    Quiet Shutdown Enable to apply safe shutdown procedure to SSL connections by sending SSL alert to the peer.
    PSK/SRP Enable to support PSK and SRP ciphers.
    PSK/SRP Username Username for PSK and SRP ciphers.
    PSK/SRP Password PSK/SRP for PSK and SRP ciphers.
    Available SSL Versions Select SSL versions.
    TLSv1.3 and other SSL versions are mutually exclusive. This means you can’t select TLSv1.3 at the same time with other SSL versions.
    Elliptic Curve Select the Elliptic Curve that the client support for key exchanges.
    Only available when you select TLSv1.3.
    Session Resumption
    • Disabled (turns off session resumption).
    • Resume Session by Ticket: Select this option to simulate a client presenting a ticket to a TLS server, having originated from that server, for the purpose of resuming a TLS session.
    • Resume Session by Session: Select this option to simulate a user attempting to use the same SSL Session ID, initially negotiated with the server.

    This option applies only to TLS v1 and TLS v1.2. It does not apply to TLS v1.3.

    Enable Client Certificate

    Enable the client autheRntication for HTTPS cases.

    Certificate

    Select the certificate created in Performance Testing > Objects > Certificates.

    Available only when Enable Client Certificate is enabled.
    Server Profile
    Certificate Select the certificates you have created in Performance Testing > Objects > Certificate Groups. If you have selected a certificate group in the Select case options window, then you are not allowed to select certificate here.
    If you have selected ECDHE-ECDSA ciphers for the client, then you must reference an ECC certificate for the server, otherwise the SSL handshake will fail.
    Session Resumption
    • Disabled (turns off session resumption).
    • Resume Session by Ticket: Select this option to simulate a client presenting a ticket to a TLS server, having originated from that server, for the purpose of resuming a TLS session.
    • Resume Session by Session: Select this option to simulate a user attempting to use the same SSL Session ID, initially negotiated with the server.
    Previous
    Next

    Starting a Gmail test

    Starting a Gmail test

    The Gmail test establishes a TCP connection (three-way handshake), sends one email by Gmail and closes the TCP connection.

    To start a Gmail test:
    1. Go to Cases > Performance Testing > Application > Gmail to display the test case summary page.
    2. Click + Create New to display the Select case options dialog box.
    3. In the popup dialog, for the Network Config option, select the network template you have created in Cases > Security Testing > Objects > Networks. Then the network related options will automatically be filled. See Using network configuration templates for how to create a network template.
    4. Select a Certificate Group if applicable.
    5. Click OK to continue.
    6. Configure the test case options described below.
    7. Click Start to run the test case.

    FortiTester saves the configuration automatically so you can run the test again later. You can also click Save to save the test case without running it.

    Tip1: You can also copy an existing case, and change its settings to create a new case. In the case list, click Clone to clone the configuration. Only the case name is different from the original case.

    Tip 2: You can add or edit a comment when the test is running. This comment can be used to search for the test result in the Results page. This is useful especially when the test runs for a long time.

    Application Test Case common options

    Application Test Case configuration specific to Gmail Test

    Settings Guidelines
    Client Profile
    Address The sender’s email address.
    Password The sender’s email password.
    To The receiver’s email address.
    Subject The subject of the mail. The maximum length is 256 bytes.
    Body The body of the mail. The maximum length is 512 bytes.

    User Agent

    Set the value of the user agent in the HTTP header.
    Quiet Shutdown Enable to apply safe shutdown procedure to SSL connections by sending SSL alert to the peer.
    PSK/SRP Enable to support PSK and SRP ciphers.
    PSK/SRP Username Username for PSK and SRP ciphers.
    PSK/SRP Password PSK/SRP for PSK and SRP ciphers.
    Available SSL Versions Select SSL versions.
    TLSv1.3 and other SSL versions are mutually exclusive. This means you can’t select TLSv1.3 at the same time with other SSL versions.
    Elliptic Curve Select the Elliptic Curve that the client support for key exchanges.
    Only available when you select TLSv1.3.
    Session Resumption
    • Disabled (turns off session resumption).
    • Resume Session by Ticket: Select this option to simulate a client presenting a ticket to a TLS server, having originated from that server, for the purpose of resuming a TLS session.
    • Resume Session by Session: Select this option to simulate a user attempting to use the same SSL Session ID, initially negotiated with the server.

    This option applies only to TLS v1 and TLS v1.2. It does not apply to TLS v1.3.

    Enable Client Certificate

    Enable the client autheRntication for HTTPS cases.

    Certificate

    Select the certificate created in Performance Testing > Objects > Certificates.

    Available only when Enable Client Certificate is enabled.
    Server Profile
    Certificate Select the certificates you have created in Performance Testing > Objects > Certificate Groups. If you have selected a certificate group in the Select case options window, then you are not allowed to select certificate here.
    If you have selected ECDHE-ECDSA ciphers for the client, then you must reference an ECC certificate for the server, otherwise the SSL handshake will fail.
    Session Resumption
    • Disabled (turns off session resumption).
    • Resume Session by Ticket: Select this option to simulate a client presenting a ticket to a TLS server, having originated from that server, for the purpose of resuming a TLS session.
    • Resume Session by Session: Select this option to simulate a user attempting to use the same SSL Session ID, initially negotiated with the server.
    Previous
    Next