Web Filter Block Override Accessible Externally

Forum|Forum|8 years ago
May 2, 2018
1 reply
5517 views

Hi, I have a device on the DMZ with port 443 open and the site can be accessed fine, no other ports are in the allow policy for that device. When I do a scan on the devices external IP however I saw ports 8008 and 8010 listed as open and whn I went to port 8008 it redirected to a Web Filter Block Override page on port 8010.

Now there are no login fields or even links on the page so I'm not sure if it's much of a risk however I am more concerned that it is open at all given I can't see any reference to it in my policy. It is a Fortinet branded page.

Anyone know how I can close this off and explain why its open on the WAN in the first place?

Many thanks

Gerry

WebFilterPage.jpg

GerryAuthor

New Member

Found the cause of this, there was a web filter rule enabled on this particular policy even though it was a WAN --> DMZ rule for https access. Once I disabled web filtering on the policy the access on port 8008 and 8010 is no more.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded