Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mhemambika
Staff
Staff

Created on ‎04-16-2025 04:35 AM Edited on ‎07-07-2025 01:16 AM By Community Manager

Article Id 387854

Troubleshooting Tip: Blocking all file uploads via web browser using FortiGate: a specific use case

Description This article describes a specific use case for blocking all file uploads through a web browser using FortiGate.
Scope FortiGate.
Solution

Blocking all types of file uploads through a web browser on FortiGate can be achieved by using a combination of Application Control and a custom signature configured to detect and prevent file upload activity.

 

In most cases, blocking all HTTP uploads is not fully achievable.


Try this in two ways:

  1. Create a custom application control signature: Select 'Create New' to add a custom application control signature.

Define a signature pattern that detects characteristics commonly associated with file uploads, such as patterns in HTTP headers related to file transfer activity.

 

Configure the application control profile:

In the 'General' settings, create or modify an application control profile. Include the previously created custom signature within the profile.

 

Apply the application control profile in a security policy:

Go to 'Policy & Objects' and choose the relevant security policy for the targeted traffic.
Modify the policy and, under the 'Security Profile' section, apply the configured application control profile.

 

  1. Configure the web filter profileWithin the 'General' settings, create or modify a web filter profile.

Configure categories and actions according to specific requirements, with particular focus on categories associated with file uploads, such as 'File Sharing' or 'Cloud Storage'.


Set the action to block uploads:
Within the web filter profile, configure the actions for the relevant categories to 'Block' or 'Deny'.

 

hema1.png


Apply the web filter profile in a security policy:

Access 'Policy & Objects' and select the security policy relevant to the traffic being managed. Edit the policy and, in the 'Security Profile' section, apply the configured web filter profile.

 

Note:

Use firewall policy inspection-mode in the proxy.

 

hema2.png

 

  1. Navigate to Security ProfilesIn the menu on the left side, go to 'Security Profiles'.

Create a new DLP profile:

Select 'Data Leak Prevention' and then 'Create New'. Configure the DLP profile:

Within the DLP profile settings, configure rules and conditions to block file uploads. Conditions can be based on file types, keywords, or patterns indicative of sensitive data. Attach the DLP profile to a relevant security policy for enforcement.

Go to 'Policy & Objects' and choose the appropriate security policy for the targeted traffic. Edit the policy and, in the 'Security Profile' section, apply the configured DLP profile. Verify the DLP actions to ensure correct handling of detected file uploads.


Configure the DLP profile to take appropriate actions when a violation is detected. Common actions include 'Block', 'Quarantine', or 'Monitor'.

Related articles:

Technical Tip: Block upload or download of PDF files larger than a specific size using DLP

Technical Tip: DLP Configuration to Block by file-type and Troubleshooting

Technical Tip: Configure Data Leak/Loss Prevention (DLP)

 

1180
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.