Hi!
We want to block the https pages but for this you need to activate ssl inspection option
At this moment we have it configured in this way:
And a web filter with manual URLs filter(like *netflix*) but the https websites are not blocked
Do you know how I can block https sites whitout ssl inspection ? We use v 6.04
Thanks!
Hello!
You can block the port TCP 443 specifically, which is the default for HTTPS.
it's better that you block all ports including 443 and only enable that you will use.
Bye!
You block by SNI and no you do not need to do full-ssl-inspection
https://kb.fortinet.com/kb/documentLink.do?externalID=FD34661
PCNSE
NSE
StrongSwan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.