I made a policy with mac address filtering on port 80 and 443 but it doesn't work. when I apply the mac address filter, the device with this mac address cannot access the services. no worries when I put on ALL.
On the other hand I made an identical policy between 2 vlan and no worries.
Why it won't work on WAN
I followed this guide https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-create-MAC-Addressed-Based-Policies...
Attached are the two screen shots of the policies in question