Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
skrymi
Staff
Staff

Created on ‎08-19-2024 06:18 AM

Article Id 334363

Technical Tip: How to block TikTok and all derivatives with a FortiGate web filter

Description

This article describes how to block TikTok using a Web Filter Security Profile on FortiGate.
Scope FortiGate
Solution

Even though a static URL can be used to block the whole domain for tiktok.com, users behind FortiGate will still be able to access the derivative pages from TikTok. 

 

Solution:

Create a new Web Filter profile, enable static URL Filter and add the following entries with the 'BLOCK' action:

 

  • tiktok.com
  • tiktokcdn-in.com
  • tiktokcdn-us.com
  • tiktokcdn.com
  • tiktokd.org
  • tiktokv.com
  • tlivecdn.com
  • ttlivecdn.com

 

After creating the URL profile, enable it on the respective policy:

 

TIKTOK1.png

 

When the users behind the FortiGate will try to access domains that are related to TikTok, the FortiGuard Blocking Page will appear:

 

TIKTOK2.png

 

To confirm that the block is coming from the Web Filter, check the Security Event Logs for that traffic:

 TIKTOK3.png

 

Note: To avoid preventing the inspection on the header of the packet, certificate-inspection should be enabled on the policy and the CA_SSL certificate should be imported into the Trusted Root Authorities store in the user machine. 
1439
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.