Skip to main content
VanDerTuch
VanDerTuch
New Member
March 10, 2022
Question

Block Youtube

  • March 10, 2022
  • 3 replies
  • 11527 views

Hello colleagues,

I am trying to block Youtube on my FortiGate 100D but without success. I have tried almost eveything, Web filtering / Application control....nothing works(mainly for Google chrome browser). I also read articles about blocking Quic protocol(UDP/TCP 80/443), it helps for facebook, not for Youtube. Order of my policies is right so i am very confused about it. I have also tried Proxy mode/flowbased mode. I see that youtube is using some type of google certificate so i think that problem is probably something with it, but it must be some way how to solve this problem. I dont have paid subscription so i cant use all feature and my firmware is 6.2.10 version. I have device only for learning purpose for myself(I want to know fortinet enviroment).

Can you give me some advice how it works? And is it also problem with blocking on newer firmwares?

Thanks a lot for any advice.

 

Juraj.

3 replies

Sachin_Alex_Cherian_
Staff
Sachin_Alex_Cherian_
Staff
March 10, 2022

Hi Juraj,

Are you using certificate inspection or deep inspection profile along with the security profiles?

Did you use a deep/full inspection profile and check the same.

 

sharmaj
Staff
sharmaj
Staff
March 10, 2022

Hello Juraj,

 

As mentioned, you need to try the combination of deep inspection with proxy-based for blocking youtube with wildcard : *.youtube.com and action as block

ebilcari
Staff
ebilcari
Staff
February 8, 2023

I think you should try to force Youtube to not use QUIC/UDP port. Details are explained here:
https://community.fortinet.com/t5/FortiGate/Technical-Note-Disabling-Blocking-QUIC-Protocol-to-force-Google/ta-p/191657

Emirjon
    Terms & ConditionsAccessibility statement