FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Wallerson
Staff
Staff
Article Id 213910
Description This article describes how to allow only one YouTube video while keeping the rest blocked.
Scope FortiOS 7.0.
Solution

Follow the steps below to allow a specific video:

 

1 ) Add the following URLs along with the video URL to the Web Rating Overrides and choose a custom category. For this example, 'custom1' category will be used:

 

googlevideo.com
www.youtube.com/s/desktop
www.youtube.com/s/player
www.youtube.com/watch?v=LN2glwJ6vyA <----- YouTube video URL.

 

Wallerson_0-1654529602047.png

 

2) Change the 'custom1' category action to 'Allow'  in the WebFilter profile. The profile must be changed to 'Proxy' mode.

 

Wallerson_1-1654529714226.png

 

3)  The category 'Streaming Media and Download' where YouTube is categorized gets in 'Block'.

 

Wallerson_2-1654529792008.png

 

4) Create an Application Control profile and make sure 'QUIC' protocol is blocked.

For this example the category 'Video/Auto' gets in 'Monitor', but to block this category just make sure to add the 'YouTube' application to the 'Application and Filter Overrides' either with action 'Monitor' or 'Allow'.

 

Wallerson_3-1654530319937.png

 

5)  Add the profiles to the policy. The policy must be in 'Proxy' mode and 'deep-inspection' is required.

 

Wallerson_4-1654530417171.png

 

6) The allowed video will play, but any other video selected is blocked.

Contributors