Question regarding the Web Filter Function of FortiGate200G (v7.6.6)

Forum|Forum|2 months ago
April 9, 2026
1 reply
82 views

I have a question regarding the Web Filter Function.

Currently, I have enabled the Web Filter Function by configuring "certificate-inspection" as the SSL inspection.

However, because the FortiGate certificate has not been manually imported to the client PCs, a certificate error screen is displayed when communication is blocked.

Therefore, I have configured the following settings to prevent the alternative message screen from being displayed:

[Settings]
config web-proxy explicit
　set https-replacement-message disable
end

Since the connecting client PCs are numerous and unspecified, I do not want to manually import certificates individually.
I would like to display an alternative message screen instead of a certificate error when communication is blocked.
If there is a way to achieve this, could you please advise me?

FortiGate

Anthony_E

Staff

Hi,

It is possible yes if you customize the replacement message page:

Go to Security Profiles > Web Filter in your FortiGate management interface, edit the existing web filter profile or create a new one.

After that, in the FortiGuard category-based filter section, right-click on a category and select Customize and then, choose a Replacement Message Group.

Hope it will help.

Regards,

Best Regards

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded