Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
New Contributor

Web Filter blocking site, even though set to Allow

  • FortiGate 50E, v6.2.9 build1234 (GA)[/ul]

    Web Filter is blocking random sites,

    even though set to Allow every category.


    I'm testing with

  • After turning on SSL Inspection, certificate was added to browser and OS.
  • With Web Filter OFF & SSL Deep Inspection ON, I can access sourceforge.
  • With Web Filter ON & SSL Deep Inspection ON, I cannot access sourceforge, browser complains "connection reset" (and cannot access other random sites), yet most other sites remain available.
  • Web Filter has been set to Allow every category & uncatagorized.
  • (Same behavior using "Monitor-all" filter)[/ul]

    wget / Web Filter OFF - - success

    --2021-10-06 15:45:30--
    Resolving (
    Connecting to (||:80... connected.
    HTTP request sent, awaiting response... 301 Moved Permanently
    Location: [following]
    --2021-10-06 15:45:30--
    Connecting to (||:443... connected.
    HTTP request sent, awaiting response... 200 OK
    Length: 151676 (148K) [text/html]
    Saving to: ‘index.html.2’


    wget / Web Filter ON (set to Allow everything) - - failure

    URL transformed to HTTPS due to an HSTS policy
    --2021-10-06 16:01:54--
    Resolving (
    Connecting to (||:443... connected.
    GnuTLS: Error in the pull function.
    Unable to establish SSL connection.

    Why can't wget (or browsers) establish an SSL connection for random sites with Web Filter ON?

    Any ideas?

    What should I try next?



  • 1 REPLY 1

    At least is the Let's Encrypt cert expiration issue started on Oct. 1.



    Select Forum Responses to become Knowledge Articles!

    Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

    Top Kudoed Authors