| Description |
This article describes a given scenario, where the Admin is not able to block any website using Webfilter profile. FortiGate has a reliable connection with FortiGuard servers with full licensing as well. Admin also has Custom-deep-inspection enabled.
Under the default profile, the admin has Streaming Media and Download Category disabled, and a URL filter for youtube.com has also been created.
In this scenario, no website is getting blocked. YouTube is chosen as an example to give an idea.
The picture below shows that Youtube.com is still accessible even after blocking it in the Webfilter security profile.
The Screenshot below shows the root cause of the problem. Admin has Custom-deep-Inspection enabled on the policy but HTTPS inspection is disabled. Webfilter security profile checks the URL of the website and takes the appropriate action. Whereas in this scenario HTTPS inspection is disabled so Webfilter does not inspect any website.
|
| Scope | FortiGate. |
| Solution |
After enabling the HTTPS inspection port under the Custom-deep-Inspection profile as shown above, the Webfilter would start inspecting the traffic and hence it is possible to see the block page below.
Related Articles : Troubleshooting Tip: Unable to connect to FortiGuard servers |
Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Spring Badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiEndpoint
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiGuest
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNDR (on-premise)
- FortiNAC-F
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiPresence
- FortiRecon
- FortiProxy
- FortiRecorder
- FortiSRA
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiTester
- FortiSwitch
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiAppSec Cloud
- Lacework
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
- Fortinet Community
- Knowledge Base
- FortiGate
- Technical Tip: The webfilter is not blocking any w...
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.