Hello,
web filter with domains starting with https doesn´t work. Something is missing.
- Is it possible to activate SSL Inspection for "static URL filter" (web filter) without activating "deep inspection"?
I looked for possibilities around the web for activating SSL Inspection:
config system global
set gui-webfilter-advanced enable
=> set gui-webfilter-advanced enable doesn´t exist
config webfilter profile
edit "phishing"
set inspection-mode flow-based
set options https-scan
=> "set options https-scan" doesn´t exist
config firewall profile-protocol-options
edit phishing
config https
=> "confige https" doesn´t exist
Any hints would be great
Regards
You will need to configure SSL Deep Packet inspection to enable the functionality you need. Without it the FortiGate cannot identify whether the traffic should be allowed or denied if the traffic is encrypyted (HTTPS/SSL).
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.