Skip to main content
SAK_Security
New Member
October 4, 2017
Question

Blocking https facebook/youtube

  • October 4, 2017
  • 1 reply
  • 16622 views

I found lots of guides on the forums that concerns blocking these particular two websites. The problem is, the best guide I found is on the following url: 

http://cookbook.fortinet.com/blocking-facebook-52/

 

This method will block all https websites, including google and other useful websites. The problem with Facebook, youtube, twitter and most https websites is that even if you types the website using http format it will redirect into the https version and hence bypass and web-filtering rules and policies.

 

My question is, is there any clear way using the fortigate (200D specifically) that enables the administrator to ban the users from a number of specified https websites?

1 reply

hmtay_FTNT
Staff
Staff
October 5, 2017

Hello,

 

>>This method will block all https websites, including google and other useful websites.

 

If you are seeing all HTTPS sites blocked, you have most likely enabled deep-inspection without importing the right Certificate.

 

If you only set add the Facebook and Youtube domain in the Web Filter, other sites will not be affected. If you enabled certificate-inspection, the Fortigate will scan the SSL sessions for the host name and block them even if they are redirected from HTTP.