Technical Tip: How to implicitly block a URL using a wild card entry without using a FortiGuard category
Description
This article describes how to allow a specific URL and to block all websites without using the FortiGuard category filtering.
Use local URL filtering to achieve this.
Scope
FortiGate.
Solution
To create the URL filtering profile, go to Security Profile -> Webfilter.
Disable the FortiGuard category based filter.
Enter the websites with '*.*' at the end to block all of the remaining pages.
URL filtering execution will follow top to bottom approach.
After creating URL filtering profile, call it in the firewall policy.
When users try to access the website which is not the part of the static filter, the below block page will appear:
Note:
Some sites use multiple sub-domains which fall under different FortiGuard categories, making it a requirementto exempt all sub-domains as well in order to access the site.
To check the sub-domains used by a particular site, check browser developer tools.
In Chrome, go to Ctrl+Shift+I -> Sources: It is possible to check all the sub-domain details here.
SSL/SSH deep/full inspection is mandatory for static URL filter working.
Related articles: