FortiGate 60 Web filter URL Filter Maximum number of entries

Report Inappropriate Content · ‎02-23-2007

I have a FortiGate 60 router. I upgraded to FortiOS 3.00 and I' m trying to create URL filters. Right now I have 2 filters. One with 12 URLs and the other with 1 URL. I want to create more filters, but when I click on create it gives me the following error: " Maximum number of entries has been reached." Does anybody know why is this? When I try to add another filter through the CLI it returns the following error: Command fail. Return code -361 Thnks Javier Loffredo

Report Inappropriate Content · ‎02-27-2007

anyone?

abelio · ‎02-27-2007

here you' ve a clue: http://kc.forticare.com/default.asp?id=2067

regards

/ Abel

Report Inappropriate Content · ‎07-19-2007

Hi abelio, Is there any workaround for filtering function to use it for more ip groups ? We' ve 10 working groups in our office and every group has different white url list. Any clue? Gokalp

abelio · ‎07-19-2007

Hello, If you can' t define 10 Lists (not ' entries' , i want to say " lists" ) try to generate exceptions using ' overrides' (very useful feature); another approach is defining those 10 whitelists as 10 group firewall addresses and set appropiate firewall policies for each ip group with those address group as " destination address" ; I' m sure that there' re more ideas to solve your needs.

regards

/ Abel

Report Inappropriate Content · ‎07-20-2007

First thanks for the recommendations. I also try to solve the problem with destination ip grup sets but today no web page serves only from one source ip. Let' s say www.cnn.com or a similar news site has 10 - 20 different source ip' s o a given web page. As you said from the link i can' t create more than 4 lists which is odd since we have a fortigate 300a. Going from 4 lists to 25000 lists between fg200 to fg800 is very funny. Thanks indeed Gokalp File pattern lists per device * FortiGate Model 200 and below: 2 * FortiGate Model 200+ to 800: 4 * FortiGate Model 800+ to 3000: 25,000

abelio · ‎07-20-2007

First thanks for the recommendations. I also try to solve the problem with destination ip grup sets but today no web page serves only from one source ip. Let' s say www.cnn.com or a similar news site has 10 - 20 different source ip' s o a given web page.

define www.cnn.com as FQDN; it will takes care of that (assuming that you run the last fortios 3.0 versions)

As you said from the link i can' t create more than 4 lists which is odd since we have a fortigate 300a. Going from 4 lists to 25000 lists between fg200 to fg800 is very funny.

well, it' s an advance over 2.80 firmware.. (just one list) anyway, many Lists is an approach to manage a lot of users/ groups; 60 models are considered by Fortinet as soho/robo; I think that you could manage your needs working with destination addresses groups without set up an external proxy

regards

/ Abel

Report Inappropriate Content · ‎07-21-2007

Thank you Abelio. Infact this is a method that i avoided before. I can definitely go with that. Regards Gokalp

FortiGate 60 Web filter URL Filter Maximum number of entries

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website