| Description | This article describes how to block TikTok and displaying a block message. |
| Scope | FortiOS, FortiGate |
| Solution |
See this article for instructions on how to block TikTok with the web filter alone.
The web filter may not be the preferred option to fully block TikTok because some foreign countries have no keyword ‘TikTok’ in the URL.
However, application control can block TikTok by signature. When web filter, application control, and SSL deep inspection are enabled in the same firewall policy, application control will trigger first and block the connection.
To block TikTok using an application signature, navigate to Security profiles -> Application Control, and select the correct profile. Under Application and Filter overrides, select Create new and search for the keyword TikTok. This will show all the relevant signatures for TikTok.
Select all the signatures requires and set the action to Block and save the changes. Now this profile can be added to the firewall policy where TikTok needs to be blocked.
Application control can block traffic in both flow-based and proxy-based inspection mode policies:
Policy in flow base inspection mode: FortiGate will send a block message showing that the TikTok connection is blocked by application control.
Policy in proxy inspection mode: FortiGate will not send a block message after the connection is blocked.
Solution: change the policy inspection mode to flow-based inspection mode.
config firewall policy edit <id> inspection-mode flow end |
Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Spring Badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiGuest
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiPresence
- FortiSRA
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiScan
- FortiSandbox
- FortiSASE
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiWAN
- FortiToken
- FortiVoice
- FortiWeb
- FortiAppSec Cloud
- RMA Information and Announcements
- Lacework
- Wireless Controller
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
- Fortinet Community
- Knowledge Base
- FortiGate
- Technical Tip: Block TikTok with a block message
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.