FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
vrajendran
Staff
Staff
Article Id 191998

Description

 
This article describes that an error may occur while trying to rate a particular webfiltering service which results in the user seeing a 'Web Page Blocked' message when accessing the internet.

This may be caused by:

  • An issue about the rating of the FortiGuard Web Filtering feature.
  • The expiration of the Web Filtering license.


Scope

 

FortiGate.

Solution

 

This will allow users to access the websites when a rating error occurs and will allow the FortiGate unit to use the FortiGuard Web Filtering database that it has stored on the unit to rate the website.


This is applicable even if the FortiGuard Web Filtering license has expired but it will not allow access to the latest update from the FortiGuard service.

Go to Security Profiles -> Web Filter, select the Profile to use, and under 'Rating Options' enable 'Allow Websites When a Rating Error Occurs'.


shreddy_FD33528_tn_FD33528-2.jpg

In CLI:

 

Untitled picture.png

 

Scenario 2:

When checking the 'di de rating', two servers were seen:

 

image (1).png

 

The FortiGuard settings were changed:

 

config system fortiguard

    set fortiguard-anycast disable

    set protocol udp

    set port 8888

end

 

The error was no longer observed.

From v7.4 and above the option for changing the 'Allow website when rating error occurs' has changed.

The Following option shown in the screenshot below needs to be disabled or enabled to either enable or disable the option for rating error.

 

1.jpg