- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Web Filtering based on DNS Inspection
Hi,
I have a question regarding Web filtering based on DNS Inspection mode. According to the configuration shown in the attached image. Which Action will ForitGate apply on Malicious Websites: The DNS Action "Block" or the Action "Allow" applied on Malicious Website in the FortiGuard Categories list? What's the relation between the DNS Actions and Actions applied on the FortiGuard Categories list?
By the way, Fortinet didn't well explain it in their FortiOS Handbook. They just mentioned the following (I'm reformulating what they said, just to make it more easily understood): << -When the DNS inspection mode is chosen, an additional setting of DNS action whether Block or Redirect must be chosen. +Block: The traffic will be dropped and the session dropped, and the result of the DNS lookup will not be returned to the requester "the user". +Redirect: The session will be redirected to a FortiGuard redirect page "message page" indicating to the user what's happening. -You can also allow access or monitor access based on FortiGuard category. >>
I can't wait to hear from you guys :)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Malicious website are known sites that infect you. It could be a porn site. Click on it for your Kim Kardashian pictures and it immediately downloads Malware, viruses, cryptolocker, etc to you. These site have well known DNS entries. The name is fairly clear. Malicious web site.
