Users sometimes getting blocked to streaming sites even when they are in profile w/access

Question

I have some users that are occasionally getting blocked to streaming media sites, even though they are in a security group that gives access. And it is sporadic, some days they can access. I noted a pattern in the firewall logs: they do not have their username in the "User" column. Those unaffected by this do have their username listed.  We are using FortiClient 5.6 on the computers, and FortiGate 300D (I don't know what version of software it is running).

Sudarsan_Babu · Answer

Hello ehurst ,

1. Have you configured any web filter in forticlient.

1a) check the web site certificate .

2. Enable user name in logs using following command

FGT# config log setting FGT(setting)# set user-anonymize enable FGT(setting)# end

3. Check in SSL inspection this category is allowed and in web filter .

Verify in Application control signature is allowed.

4. You need to to packet capture or use the following debug command to check when its blocked .

FGT# di de url-filter src addr ----------> PC Address

FGT# di de application urlfilter -1

5. Check application control logs when its blocked. So you can check in which policy ID traffic is passing .

Regards,

Sudarsan Babu P

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded