Staff

Technical Tip: Unable to apply Application Control in Security Policy when central NAT is enabled.

Description	This article discusses the unavailability of an Application control profile from Security policy including from Feature Visibility.
Scope	FortiGate.
Solution	When the Central NAT is enabled this is an expected behavior, the application control security profile is no longer available under Security profiles or Security Policy and also from Feature Visibility to be enabled. However, this feature can still be used directly on the profile as below, where a specific application or the whole Category can be selected as per the requirements: Below is an example where a Whole proxy Category and a single application Bit Torrent which is part of the P2P category are blocked using the security policy with this feature, Category and Specific applications and be selected in the same policy:

Sign up