FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Goutham_FTNT
Staff
Staff
Description
This article describes the steps to allow a specific YouTube content video and block all other content from YouTube.   

Scope
All FortiGate units.   

Solution
Enable 'Inspect All Ports' under SSL/SSH inspection – Deep inspection.
  • Navigate to Policy & Objects > SSL/SSH Inspection > Select 'Deep-Inspection'
  • Enable the option 'Inspect All Ports'
gshanmugham_FD38689_tn_FD38689-1.jpg

Create the web filter profile.
  • Navigate to Security Profiles > Web Filter
  • Allow the category 'Streaming Media and Download'
  • Enable the option 'URL Filter'
  • Create New, enter the YouTube video URL that is to be allowed, set type=Simple, Action=Allow > OK
  • Create New, enter URL – www.youtube.com, set type=Simple, Action=Block > OK
  • Apply
gshanmugham_FD38689_tn_FD38689-2.jpg

Apply the web filter on the policy.
  • Navigate to Policy & Object > Edit the policy to which it is to be applied
  • Enable web filter and select the profile with the YouTube filter and also select the SSL/SSH inspection as 'deep-inspection'
  • If application control is enabled then ensure that the YouTube signatures are allowed in the profile
gshanmugham_FD38689_tn_FD38689-3.jpg

Verification from LAN PC

Accessing YouTube and other YouTube links should be blocked.
gshanmugham_FD38689_tn_FD38689-4.jpg

Accessing the specified video should be allowed.
gshanmugham_FD38689_tn_FD38689-5.jpg

Contributors