Hello, I am using the Web Filter for CIPA in a Library on a 60E Firewall. I have the Override Block set to 15 minutes. When someone is visiting a blocked site, let's say playboy.com, after the 15 minutes is up, the site is still accessible for as long as they want. If they close the browser and then visit the same blocked site, then the blocked page comes up again. I would think that after the allotted time expires, the page should not still be usable. Is this the way it is supposed to be? I would think if they click on a link within the site that it should come back with the blocked message. Anyone know of a work around? The library director is not fond of this problem. When the time limit is up, they want it to start blocking that site again.
Thanks for any incite.
Created on 11-25-2021 11:52 AM
Hi librariesonline,
As per your query, it seems strange that the site was not blocked from the same session when the time was exceeded. However, can you please confirm the following information of your Fortigate 60E.
Which version is the device running ?
What is the inspection mode the device is running on? (Flow based/ Proxy Based)
Are you using SSL deep certificate inspection on the policy?
Can you also check the link mentioned below for configuring Web profile override.
https://docs.fortinet.com/document/fortigate/6.4.2/administration-guide/408599/web-profile-override
Thanks for your response.
I am running 7.0.1
Flow-Based
Certificate Inspection.
Switch applies to IP, not a user.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.