Just create a own Rating Override Sub-Category e.g. " withoutSSLinspection" Put all the domains into that group Edit the Webfilter profile and if you don' t have already, enable the " FortiGuard Categories" and make sure the new created Sub-Category is set to " Allow" or " Monitor" under the " Local Categories" //check the ID of the new Category config webfilter ftgd-local-cat sh //note the ID end //make the needed changes in the webfilter profile config webfilter profile edit " profile name" config ftgd-wf set exempt-ssl " Category ID" end Works perfectly hereSo after I do this, is there a way in the CLI to check and make sure the change took effect?
//make the needed changes in the webfilter profile config webfilter profile edit " profile name" config ftgd-wf set exempt-ssl " Category ID" endAlso, do I need to do this for each profile, or does changing it for one profile, change it for all of them?
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.