Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mramalinga
Staff
Staff

Created on ‎06-18-2021 05:53 AM Edited on ‎02-17-2022 02:00 PM By Anonymous

Article Id 190379

Technical Tip: Information on 'Reputable web sites' for SSL inspection

Description
This article describes information about the function of 'Reputable web sites' and how to view the list of trusted URLs.

Solution
'Reputable web sites' is a white-list database that is updated and synchronized through FortiGuard.

This database is maintained by the FortiGuard team and it contains a list of reputable domain names that can be excluded from SSL deep inspection when 'Reputable websites' is enabled under SSL/SSH Inspection.


 
 
The list of trusted URLs is visible by navigating to System -> Reputation and search for IP or Domain.
 
 
 
 
If the Reputation section is not visible under System tab, enable 'Domain & IP Reputation' field under 'Feature Visibility'.
 
 

 
 
CLI Commands:
# config system settings
    set gui-domain-ip-reputation enable <----- To enable Domain & IP Reputation under Feature Visibility.
end

# config firewall ssl-ssh-profile
    edit <name_of_the_ssl-ssh-profile>
        set whitelist enable            <----- To enable 'Reputable websites' under SSL/SSL Inspection profile.
    next
end
6439
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.