Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
akushwaha
Staff
Staff

Created on ‎07-11-2025 04:47 AM

Article Id 400067

Troubleshooting Tip : Block Remote Access Category when TLS is allowed in Application and Filter Overrides

Description This article explains how to block Remote Access Category by Application Control profile when TLS is allowed in Application and Filter Overrides.
Scope FortiGate.
Solution

In the below Application Control Profile, the Remote Access Category is blocked, and TLS is allowed :


Rem-1.png

 

 

Even when the Remote Access category is blocked, the AnyDesk application is allowed  in the following logs:

Rem-2.png

 

To block Remote Access Category even when TLS is allowed in Application and Filter Overrides.

Add another rule under the 'Application and Filter Overrides' section, select 'Create New' in this section, select the 'Filter' type at the top of the 'Add New Override' panel. Add the 'Remote Access' category in the 'Filter' entry and select 'OK' to create the new rule.


Select all the popularity (selected 1 star to 5 stars) to avoid the error messages:

Rem-3.1.png

 

Make sure the newly created rule is placed with a higher priority than the TLS rule:

Rem-3.png

Afterwards AnyDesk application will be blocked by the Remote Access Category:

Rem-5.png
313
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.