Skip to main content
Hassan_Zohaib
Hassan_Zohaib
New Member
October 14, 2012
Question

Allow access to Internet only during lunch hours

  • October 14, 2012
  • 3 replies
  • 8310 views
Hi, I have gone through the handbook and various other downloaded manuals but I can' t get this to work. Here is my current setup: x) Users are authenticated using the FSAE. x) Three AD groups have been defined; Internet_Users, Internet_Managers and Internet_IT. x) Internet_Managers have access to everything except downloading executable files 24x7. x) Internet_IT has full access 24x7. x) Internet_Users have social media, downloading and other stuff blocked. I want Internet_Users to be able to use sites such as Facebook during lunch hours only. I have created a schedule " enableSM" that recurs from 1:00 PM to 2:00 PM everyday. I have created a UTM called " Normal" that blocks social media, porn, etc. And another UTM called " Enable social media" that enables social media while blocking everything else as defined in " Normal" . How can I enable the users of AD group Internet_Users to use UTM " Enable social media" during the timing defined in " enableSM" ? I have Fortigate 200A. Any help would be much appreciated. Regards, Hassan.

    3 replies

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    October 15, 2012
    hi, and welcome to the forums. For this user group create 2 policies: - policy 1 with a schedule from 1pm to 2pm - policy 2 with an ALWAYS schedule Now you can assign different UTM profiles for the lunch break and the rest of the time. This works like this: policy 1 will only be valid / active during the lunch break. If outside of this time window the next (lower in list) policy matching the traffic / the user group will be active. Note that the lunch policy must be on top of the other (higher in list).
    Hassan_Zohaib
    Hassan_ZohaibAuthor
    New Member
    October 16, 2012
    Hi I have done exactly like the post above but its not working. All it does is that it blocks everybody off.
    Fullmoon
    Fullmoon
    New Member
    October 22, 2012
    Hi, This is my approach if you don' t mind, pretty much working lots of my fortigate firewalls lets say facebook is open from 11:00AM -13:00 PM then 8:00AM-17:00PM facebook is not accessible, then beyond 17:00Pm facebook is open For this user group create 3 policies: - policy 1 with a schedule from 11AM to 13PM (create a web profile that Allows FB) - policy 2 with a schedule from 8AM to 17PM (create a web profile that Blocks FB) - policy 3 with an ALWAYS schedule (you can create a profile that FB is open,then this policy will allow to access FB from 18:00PM-7:59Am the ff day)
    beckyricee
    beckyricee
    New Member
    December 28, 2024

    Allowing internet access only during lunch hours can be a practical approach to managing productivity and minimizing distractions. By restricting internet usage during working hours, employees can stay focused on their tasks, while having the flexibility to browse the web during a designated time for relaxation and personal needs. This setup might help improve work efficiency without limiting personal time entirely. It’s possible that websites such as www.sss.com ph could become a useful resource for employees to explore during these breaks. This idea, if implemented thoughtfully, could encourage both work discipline and personal well-being.

    Terms & ConditionsAccessibility statement