Hi,
I am using FortiGate 90D firewall with Current Running Firmware: FGT90D-5.00-build271. I am using a policy #1 where all internal office traffic is passing to WAN1(INTERNET), I have activated web filter profile (which is working fine) and application control on policy #1. In application control i have blocked the Soft Ether VPN application but its not working.
many people in my office are using the same software to connect the blocked sites. need help.
Regards
Hussnain Ali Javed
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi buntha,
excuse me I'm new with Fortigate. where should i use these commands?
Hi!!!!!
Please create custom application than action you can block or reset it's base on you want.
Best Regard,
Yin Buntha
Buthan,
Your solution working to block SofEther.
By choosing P2P (SoftEther inside that App Control) from FortiGate only won't block it.
I excpecting FortiNet fixing their SoftEther filter.
Because if I use your way, I need to create 5 App Signature instead of 1.
BTW thank you for your solution.
Going to test Open Proxy after this
thanks
will this work on chrome's dot-vpn add-on?
@sundar1988
I'll try your chrome dot-vpn in CheckPoint
So far I have been successfully block these in CheckPoint in Unetlab
-Torrent
-Opera Turbo
-Chrome add-ons Browsec
-Chrome add-ons ZenMate
-Psiphon
https://nbctcp.wordpress.com/2016/05/19/checkpoint-gaia-installation-on-unetlab/
I don't have FortiGate 80C/CM subsciption, so I can't test much on those.
I am expecting FortiGate do the same as CheckPoint does which give 15d fully functional+subcription with their Fortigate vm.
Currently Fortigate only give vm trial but can't update definition.
If not mistaken, if I enable IPS, firewall function will be down.
I try so much to fix those problem, by doing these.
-email to FortiGate Indonesia Channel Manager. No respond at all
-ask thru Linkedin to head of FortiGate Europe. No respond
If FortiGate can't compete with CheckPoint. Why cheap product like Mikrotik can block those
https://nbctcp.wordpress.com/2016/04/29/blocking-browsec-chrome-extension/
https://nbctcp.wordpress.com/2016/04/29/blocking-opera-turbo/
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1711 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.