FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description A webpage that is consulted over ports 8008, 8010, or 8020 is not displayed and the connection times out. Also the parts of a webpage that redirect the traffic, in order to display elements from another page that uses these ports, fail to be displayed.
This article explains how this happens and how to overcome this.
This happens when a Web Filter profile is applied to the firewall policy that controls this traffic. These ports are used by Web Filter to consult FortiGuard on override authentications.
8008: The port to use for FortiGuard Web Filter HTTP override authentication. 8010: The port to use for FortiGuard Web filtering HTTPS override authentication. 8020: The port to use for FortiGuard Web Filter Warning override authentication.
Solution The way to correct this issue is by changing the override authentication port to any other in CLI.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.