Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Mirza_Asad2723
New Contributor III

Created on ‎04-23-2025 04:10 AM

UNABLE TO ALLOW/EXEMPT SPECIFIC WEBSITE WHICH HAS BEEN BLOCKED BY FORTIGATE

Dear Concern,

 

I need to access a website that is currently being blocked by my FortiGate-201 running FortiOS v7.6.2.F. I have attached a screenshot for your reference.

Capture.JPG01.JPG

 

 



The website is authentic, and I would like to specifically allow or exempt it so that it can be accessed from our office network. According to the attached capture currently, it is being categorized as a "Malicious Website," which is why the FortiGate firewall is blocking it.

Capture.JPG02.JPG

 

I have already added the website to the Security Profiles > Web Filter > URL Filter and set it to Allow by using type simple or wildcard, as shown in the attached capture. However, the website is still being blocked.

 

Kindly guide me on how to properly exempt or allow this website so that it can be accessed from our network.

 

Your urgent and appreciable technical support is required to allowing this specific website in my FortiGate firewall.

Labels:
652
0 Kudos
4 REPLIES 4
funkylicious
SuperUser
SuperUser

Created on ‎04-23-2025 04:38 AM

hi,

please try setting it to Exempt instead of Allow and do open an incongnito window and then try to access it again.

"jack of all trades, master of none"
"jack of all trades, master of none"
641
SimranRana
Staff
Staff

Created on ‎04-23-2025 05:48 AM

Hello,

Please select the "Status" as "Exempt" as the traffic is allowed to bypass the remaining FortiGuard web filters, web content filters, web script filters, antivirus scanning, and DLP proxy operations, when exempt is selected.

Reference: Static URL filter | FortiGate / FortiOS 7.6.2 | Fortinet Document Library

616
ametkola
Staff
Staff

Created on ‎04-28-2025 07:53 AM

Hello @Mirza_Asad2723 ,

 

To further check the website categorization you can search the name of the website in the link below:

https://www.fortiguard.com/webfilter

 

Regards,

549
ezhupa
Staff
Staff

Created on ‎04-29-2025 06:04 AM

The correct action should be exempt and not allow. 
You can find the explanation for the actions below:

Action' descriptions in Static URL see below:

 

  • 'Block' -> destination is blocked and session dropped, no further category check is needed.
  • 'Allow' -> destination is allowed from the static URL list, FortiGate proceeds with checking the category to decide further action.
  • 'Exempt' -> destination is exempted from further inspection and traffic is allowed


    As you can see action "allow" will still check the category which in your case it will be blocked.

    Reference document:
    https://community.fortinet.com/t5/FortiGate/Technical-Tip-Difference-between-action-Allow-and-Exempt...
515
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.