FortiGate has been configured so that when accessing AI sites, a warning will pop up, and when the 'proceed' button is pressed, users can access the AI site. Even though the AI sites were accessible, users could not use the AI sites and search for anything required. In this article, 'chatgpt.com' and 'copilot.microsoft.com' are considered as examples. Answers to the question raised are not seen, and sometimes an error is displayed. Refer to the video below:
In forward traffic logs, security events logs, it is observable that traffic is passed with out been blocked.
Below is the config that is causing this issue:
config webfilter profile
edit "GenAI_sites"
set comment "warning pop up for AI"
set feature-set proxy
set replacemsg-group "AIWebsites"
config ftgd-wf
unset options
set exempt-quota g21
config filters
edit 142
set category 142
set action warning
set warn-duration 2s <<<<<<<<<<<
set override-replacemsg "GENAI_sites"
next
The 'warn-duration' is set as 2 seconds, where the warning keeps appearing every 2 seconds. But the AI tools are not fully loaded during this time, and when accessing the content or when trying to get a reply to this disrupt the traffic and the AI sites malfunction.
To avoid this issue, increase the 'warn-duration' at least to 5 minutes, which is the default.
config filters
      edit 142
      set category 142
      set action warning
      set warn-duration 5m <<<<<<<<<<<
      set override-replacemsg "GENAI_sites"
     next
Note: It is necessary to understand 'warn-duration' parameter controls when the next warning will pop up. If it is set to 5 minutes, after the initial warning pops up, it is possible to access the sites in the given category ( in this example ChatGPT and Copilot) until the next warning pops up in 5 minutes.
| 
