Technical Tip: How to Block Youtube using Static URL filter

lestopace · ‎04-11-2022

Description

This article describes how to block YouTube using a Static URL filter.

Scope

FortiGate.

Solution

Blocking YouTube on a static URL filter is typically required when the Streaming Media and Download category is allowed but there is a need to block YouTube.

Configuration :

URL: '.*googlevideo.*'
Type: Regex
Action: Block

URL: '.*youtube.*'
Type: Regex
Action: Block

URL: '.*ytimg.*'
Type: Regex
Action: Block

Both URLs are required to be added to avoid bypassing the blockade due to browser cache or searching the YouTube video through a search engine.

The YouTube website may still load but users affected by this Webfilter profile will not be able to load videos.

Create a Deny-based firewall rule with the UDP 443 port.

Blocking QUIC this way will force the web browser to use TLS instead.

Follow the steps mentioned below to block the website:

Go to Security Profiles -> Web Filter.
Select a web filter to edit.
Under Static URL Filter, enable URL Filter, and select Create New.
Enter the URL, without the 'http', for example, www.example*.com
Select a Type: Simple, Regular Expression, or Wildcard. In this example, select Wildcard.
Select the Action to take against matching URLs: Exempt, Block, Allow, or Monitor.
Select 'Enable'.
Select 'OK'.

Related article:

Technical Note: Disabling / Blocking QUIC Protocol to force Google Chrome to use TLS

Technical Tip: How to Block Youtube using Static URL filter

You are leaving our website