Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
New Contributor

Subdomains issue - Trying to limit to specific but all work


We are trying to limit access to a specific sub domain by specifically whitelisting it via FQDN, as we might want to allow other sub domains at a later date. However all sub domains are being allowed through. For example:




However all sub domains such as:

Still work.


All sub domains share the same IP address, and I have been advised that this might be the problem. Is this normal behavior? This is an initial sanity check to make sure I am not missing a fundamental.





Valued Contributor III

Welcome to the forums.


Have you tried using regular expressions to craft the name?




That forces it to start with 'hat', and end with '.com'. Removing the trailing dollar sign will allow it to end with anything.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at:




Thank you for the suggestion and happy to be here :) ^ cannot be used with FQDN. One of my guys says there is nothing that can be done with this because all subdomains resolve to the same IP address.


At the end of the day all I want to do is allow access to but block access to all other subdomains.


Any other suggestions on the best approach? Happy to explore outside of FQDN?