Fortinet - Life of packet
Alasta 17 Juillet 2015 fortinet Fortinet
Description : Voici la vie d'un paquet qui traverse un FortiGate.
Life of Packet :
Exemple d’une connexion client/server :
The following example illustrates the flow of a packet of a client/web server connection with authentication and FortiGuard URL and antivirus filtering.
This example includes the following steps:
Initiating connection from client to web server
- Client sends packet to web server.
- Packet intercepted by FortiGate unit interface. 2.1 Link level CRC and packet size checking. If the size is correct, the packet continues, otherwise it is dropped.
- DoS sensor - checks are done to ensure the sender is valid and not attempting a denial of service attack.
- IP integrity header checking, verifying the IP header length, version and checksums.
- Next hop route
- Policy lookup
- User authentication
- Proxy inspection 8.1 Web Filtering 8.2 FortiGuard Web Filtering URL lookup 8.3 Antivirus scanning
- Source NAT
- Routing
- Interface transmission to network
- Packet forwarded to web server
Response from web server
- Web Server sends response packet to client.
- Packet intercepted by FortiGate unit interface 2.1 Link level CRC and packet size checking.
- IP integrity header checking.
- DoS sensor.
- Proxy inspection 5.1 Antivirus scanning.
- Source NAT.
- Stateful Policy Engine 7.1 Session Tracking
- Next hop route
- Interface transmission to network
- Packet returns to client