Technical Tip: Unable to access some Government/Banking websites

When the FortiGate WAN interface is configured with PPPOE Mode, there are instances in which, some Government/Banking websites do not load.
The reason behind this is that the Public IP acquired by PPPOE WAN Interface may be obsolete or blacklisted.
As a test, it may be possible to steer the traffic to an alternate WAN interface to see if this is the case.

Depending on how the Web Server is doing the block, this may be possible to see in a sniffer.
Start a sniffer by running the following command:

di sniffer pack <wan> 'host x.x.x.x' 4 0 l

Replace <wan> with the name of the WAN interface, and x.x.x.x with the IP of the website the user is trying to access.

If the Web Server is not responding to our SYN packet, this may be indicative of a block:

If the Web Server is responding to the SYN packet with a RST or FIN, this may be indicative of a block:

It may be possible to 'Renew' the Obtained IP/Netmask to fetch a new set of IP addresses as a workaround for this issue, but it is unlikely this will work.
The best way to resolve this issue would be to contact the ISP. It will be possible to assign a different public IP address or assist with getting the current one unblocked.