We have a Fortigate firewall that run firmware V7.2.4
we noticed some users are using Tor Browser to access some blocked sites by the firewall
the firewall cannot detect it although application control is enabled and it is being blocked by it
however, when we checked the forward traffic log we found it under entries for HTTPS application with no result
but it is allowed
is there any way to detect and block this traffic
Are you using deep inspection on this setup?
More information can be found here: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Blocking-and-monitoring-Tor-traffic/ta-p/1...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.