Skip to main content
lokewing
lokewing
New Member
November 28, 2014
Solved

webfilter block streaming video except youtube fail

  • November 28, 2014
  • 2 replies
  • 33371 views

Dear all,

 

i have a fortigate 100D version v5.2.2, i need to set a rules to block all streaming video but only allow youtube, i have done the web rating overrides youtube.com to custom group. but when i streaming video on youtube keep show video error.

    Best answer by Dave_Hall

    You may have better luck using an application sensor -- either create a new app sensor or preferably use your existing one that is covering web traffic; add an application filter that blocks all video/audio then create a second one that allows google video/media -- move this second app filter above the first one.  Like firewall policy rules app filters are executed from top->down.

     

    2 replies

    lokewing
    lokewingAuthor
    New Member
    November 28, 2014

    Below is my categories filter

     

     

    Dave_Hall
    Dave_HallAnswer
    New Member
    November 30, 2014

    You may have better luck using an application sensor -- either create a new app sensor or preferably use your existing one that is covering web traffic; add an application filter that blocks all video/audio then create a second one that allows google video/media -- move this second app filter above the first one.  Like firewall policy rules app filters are executed from top->down.

     

    lokewing
    lokewingAuthor
    New Member
    December 3, 2014

    Dave Hall wrote:

    You may have better luck using an application sensor -- either create a new app sensor or preferably use your existing one that is covering web traffic; add an application filter that blocks all video/audio then create a second one that allows google video/media -- move this second app filter above the first one.  Like firewall policy rules app filters are executed from top->down.

     

    [attachImg]https://forum.fortinet.com/download.axd?file=0;117879&where=message&f=allow-youtube only b.gif[/attachImg]

     

    i have follow your way to do the filter,but some time fortigate unable detect facebook apps and block it, is just show ssl for facebook and allow, how to avoid this?

    arshadm
    arshadm
    New Member
    November 29, 2014

    Ok. This is not an issue at all. If you go to your logs and open security, webfilter log you will be able to see that it blocks all the traffic destined to googlevideo.com. You just have to add googlevideo.com to a static webfilter or do a override like you have done to youtube.com.

     

    P.S. I prefer doing this via static web filter rather than overrides. 

    Terms & ConditionsAccessibility statement