Description | This article gives an overview of Blocking Facebook Video and Reels using Application control |
Scope | FortiOS 7.2 and Above |
Solution |
By using the Application control Signature, Facebook Videos and Reels can be blocked while surfing through the Facebook page are allowed. The signatures that are used are the 'Facebook_Video.Play' and also 'Facebook_Messenger.Video.Transfer'. These signatures only block the Videos that are transferred using the Facebook Messenger.
First, create an Application Control Profile as shown below:
Since Social Media is set to Monitoring in the All Category Field together with the Audio & Video signature, the 'Application and Filter Overrides' must be used to block the corresponding Signatures.
The Application Control Profile is then used in the Firewall Policy with Deep Pack Inspection. The certificate that has been used at the deep packet inspection is downloaded and uploaded at the Windows Host machine for the certificate. Note: Without Deep Packet Inspection, this Application Control will not work in this case.
The results of downloading the Certificate from the SSL Inspection Profile are shown in the screenshot below:
From the Security Profiles, select SSL/SSH Inspection and then select the appropriate profile, then download the CA certificate.
At the Windows Host, upload the certificate in the Web browser by following the steps provided below:
Microsoft Edge Browser is used in this example.
From the Options, select Security and Privacy and then scroll down to 'Manage Certificate', then upload the certificate downloaded from the FortiGate as a 'Trusted Root Certification Authority'.
After that, while browsing Facebook, the Videos and Reels do not appear, and nor do the Thumbnails.
Forward Logs and Report show Facebook Video has been blocked:
By using the same methodology, other Facebook functions can also be blocked such as the Facebook Like Button, Facebook Messenger, the ability to comment or post on Facebook, etc. The List of Signatures can be found from the Application Control Signature database itself.
Reference articles: Technical Tip: How to check Application Control category of an application. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.