Description
This article describes the steps to allow a specific YouTube content video and block all other content from YouTube.
Scope
All FortiGate units.
Solution
Enable 'Inspect All Ports' under SSL/SSH inspection – Deep inspection.
- Navigate to Security Profiles -> SSL/SSH Inspection -> Select 'Deep-Inspection'.
- Enable the option 'Inspect All Ports'.
Create the web filter profile.
- Navigate to Security Profiles -> Web Filter.
- Select the profile in use, for example: web-filter.
- Allow the category 'Streaming Media and Download'.
- Enable the option 'URL Filter'.
- Create New, enter the YouTube video URL that is to be allowed, and set type=Simple, Action=Allow -> OK.
- Create New, enter URL – www.youtube.com, set type=Simple, Action=Block -> OK.
- Apply.
Apply the web filter on the policy.
Verification from LAN PC.
Accessing YouTube and other YouTube links should be blocked.
- Navigate to Policy & Object -> Edit the policy to which it is to be applied.
- Enable the web filter, select the profile with the YouTube filter, and also select the SSL/SSH inspection as 'deep-inspection'.
- If application control is enabled then ensure that the YouTube signatures are allowed in the profile.
Accessing YouTube and other YouTube links should be blocked.
Accessing the specified video should be allowed.
Related documents:
