Description | This article describes how to block a specific VPN application by using the application control signature. |
Scope | FortiGate. |
Solution |
To prevent LAN users from using a specific VPN application, enable SSL Deep Inspection + application control profile in the firewall policy.
It is necessary to block QUIC protocol since UDP/443 is used for some applications, including some VPN applications, to avoid inspection.
Related articles: Technical Tip: How to enable deep inspection and import a certificate in the browser Technical Tip: How to import CA certificates into IOS mobile devices Technical Note: How to import CA certificates into Android devices |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.