Hi ALL,
We have requirement for website, want to allow only specific websites at fortigate firewall. but we don't any web filter license on the firewall.
I want to confirm if can we do it or not.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi, yes, you can, using static URLs filter list in the Web Filtering.
E.g. here I allow example.com and then block anything else:
Then use this Static-filter profile in security rules for outgoing web traffic.
Hi Umesh,
You can use FQDN or wild card FQDN based policy. So where you can specify required website URL/FQDN address object and call that address object into firewall policy and action set to Accept.
Refer below article for the same :
https://docs.fortinet.com/document/fortigate/6.2.0/new-features/329154/support-for-wildcard-fqdn-add...
Thanks,
Mayur Padma
adding to above configuration suggestion, make sure that the client and the Fortigate resolves the fqdn to the same IP address.
you cannot use the url filter as suggested by Yuri unless you have a valid webfilter license.
But FQDN objects like suggested by Mayur will work.
Just create a policy that allows internet traffic only to this FQDN(s) and make sure anything else does not match any internet policy so it will be dropped by the implicit deny policy.
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
To block or allow access to specific websites on a FortiGate firewall, you can create custom firewall rules using Fully Qualified Domain Names (FQDNs) or wildcards. This method requires no additional licenses, unlike web filtering features, which typically need a valid subscription. Alternatively, you can block websites by their IP addresses, though this approach may be less reliable as IPs can change.
i also face this prob on this website limcypackaging.com/
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.