FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
skaneria
Staff
Staff
Article Id 193384

Description

 

This article explains how to override the FortiGuard web filtering.

Change the rating for a web site and control access to the site without affecting the rest of the sites in the original category is possible.

 

Scope

 

FortiGate.

Solution

 

To override the FortiGuard web rating, go to Security Profiles -> Web Rating Overrides.

Stephen_G_0-1723633272387.png

 

 
Stephen_G_1-1723633277730.png


Select
any column heading to select columns which are displayed or to reset all the columns to the default settings.
Drag column headings to change the orders.

The following options are available:

Create New Create a new web rating override. See to create a new web rating override.
Edit Modify the selected web rating override. See to edit a web rating override.
Delete Remove the selected web rating override. See To delete an override or overrides.
Custom Categories Select to create a custom category for groups of URLs. See Custom category.
Search Enter a search term to search the web rating override list.
URL The URL of a web site.
Override Category The new category for the web site.
Original Category The category that the web site originally belonged to.
Status Override is enabled or disabled.


Web rating overrides can be created, edited, and deleted as required.

To create a new web rating override.

  1. Go to Security Profiles -> Web Rating Override and select 'Create New' from the toolbar.
  2. In the URL field, text the URL of the web site to re categorize. Do not use wildcard expressions when typing in the URL.
  3. Select 'Lookup Rating' to verify the current categorization assigned to the URL.
  4. Select a new category for the web site in the category drop-down menu.
  5. Select a more narrowly defined option within the main category in the sub-category drop-down menu.
  6. Select 'OK'.

 

kb_19937_1.png


To edit a web rating override.

  1. Go to Security Profiles -> Web Rating Overrides.
  2. Select the web rating override to edit and then select 'Edit' from the toolbar or select the profile name in the list.
  3. Edit the information as required and then select 'OK' to save the changes.

To delete an override or overrides.

  1. Go to Security Profiles -> Web Rating Overrides.
  2. Select the override or overrides to delete.
  3. Select 'Delete' from the toolbar.
  4. Select 'OK' in the confirmation dialog box to delete the selected override or overrides.

Custom category.

To create a new category for a group of web sites:

 

  1. Go to Security Profiles -> Web Rating Overrides.
  2. Select Custom Categories. The Custom Categories window opens.
  3. Select Create New.
  4. Enter the name of the custom category.
  5. Select 'OK'.

 

Custom1.png


To use the new category, select 'Custom Categories' in the new web rating overrides window or the edit web rating overrides window.
The new categories are listed in the sub-category drop-down menu.

Once the override is created, go to the web filter profile and select an action for the new category: either Monitor, Block, Warning, or Authenticate.
As shown in the example, 'newest.com' belongs to the 'Information and technology' category, it is configured to be overridden by the 'business' category, so the business category action must be set as Monitor, Block, Warning, or Authenticate.


A web rating override in a custom category will not impact any web filters until the category's action is changed to Monitor, Block, Warning, or Authenticate in the specific web filter profile's settings.

If the override login page is not loading properly, check the authentication settings and choose the correct certificate.

 

config user setting

set auth-cert Fortinet_Factory <- This certificate will be used for the override page. Ensure this setting has the correct certificate.

end