Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

AndrHann
New Contributor III

Web filter logging

Hi all

I've got a problem in several FortiGate firewalls (some 60Ds and one 100D) where the logging isn't working for web filtering on allowed websites. I have an outbound policy in place with app and web filtering enabled as well as logging. The application events get logged in the log viewer (and FortiCloud) but there are no web events. In "Forward Traffic" log under the "Security Events" column there are lots of green "App" events but no "Web" events. In FortiCloud I can see websites in the "Top Websites Blocked" section but there is nothing in the "Top Websites Allowed".

Appreciate your help.

Andre

1 Solution
PauloRaponi
New Contributor III

Change your web filter profile action from "ALLOW" to "MONITOR".

 

Regards

Paulo Raponi, NSE8

View solution in original post

3 REPLIES 3
PauloRaponi
New Contributor III

Change your web filter profile action from "ALLOW" to "MONITOR".

 

Regards

Paulo Raponi, NSE8

AndrHann
New Contributor III

Thanks Paulo. I knew it would be something simple.

aterekhov_FTNT

Andre,

 

you can also use 'log-all-url' from CLI:

config webfilter profile

edit

set log-all-url enable

end