Description
This article explains how to block specific adult content websites using FortiGate. Sometimes, certain websites are not blocked by the web filter even though the 'For adults'(see screenshots) category is blocked under the web filter. This article provides a step-by-step solution to resolve this issue.
Scope
FortiGate.
Solution
To block a specific adult content website using FortiGate, follow these steps:
- Go to Policy & Objects and create a new policy.
- In the policy, select the Web Filter profile and enable the 'For adults' (see screenshots) category block in that web filter.
Note:
- The firewall Policy must have Inspection mode set to proxy-based.
- The web filter applied in this policy must have the feature set set to Proxy-based.
- If the website is still not blocked, create a Static URL filter for the specific website. Check the following KB article to get information How to create a static URL: Technical Tip: Using a static URL filter feature to allow/block web sites
- If the issue persists, create a new policy with the Destination IP set to the IP address of the website and set the action to
Deny. - In some cases, these websites can bypass the filtering by using the HSTS protocol. In that case, a deep-inspection profile may be required
Apply the new policy to the traffic and verify that the website is blocked.
