Skip to main content
tuan2tech
tuan2tech
Explorer
April 9, 2024
Solved

File filter blocks exe files

  • April 9, 2024
  • 2 replies
  • 2881 views

Hi you

I'm using FG v7.4.3, I created a file filter to block downloading of .exe files, but users can still download the .exe file, specifically the Chrome installation file, specifically its file is ChromeSetup.exe

 

file-fillter.jpg

Best answer by AEK

Hi @tuan2tech 

If you are downloading from HTTPS server then you to setup SSL deep inspection in your firewall policy otherwise the file filter profile will not work.

If you download from HTTP site then the file filter will work without enabling deep inspection.

2 replies

AEK
SuperUser
AEKAnswer
SuperUser
April 9, 2024

Hi @tuan2tech 

If you are downloading from HTTPS server then you to setup SSL deep inspection in your firewall policy otherwise the file filter profile will not work.

If you download from HTTP site then the file filter will work without enabling deep inspection.

AEK
    abarushka
    Staff
    abarushka
    Staff
    April 9, 2024

    Hello,

     

    I would recommend to check whether deep inspection is enabled if applicable.

     

    Moreover, I would recommend to check whether the issue persists after disabling QUIC protocol/switching firewall policy to flow.

     

    https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/984075/blocking-quic-manually

    https://community.fortinet.com/t5/FortiGate/Technical-Tip-Block-QUIC-Protocol/ta-p/197661

     

    Terms & ConditionsAccessibility statement