Hi everyone,
If I understand well, Web filter gives you more control over the things you can allow or block, in addition you don't need to use the FortiGuard DNS servers, so you don't have this limitation. Then, my question is, why do you need DNS filter if you can do the same or better with Web filter? Any example?
Regards,
Julián
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
They both serve the same goal, but achieve it in very different ways. So one is not better nor worse than the other, but rather depends on the context.
They both serve the same goal, but achieve it in very different ways. So one is not better nor worse than the other, but rather depends on the context.
Hi Yuri,
Very well explained. I thought DNS filtering needs to use FortiGuard DNS servers because it must use FortiGuard DNS service for DNS lookups, but I understand the FortiGate redirect DNS queries to FortiGuard DNS servers.
On the other hand, does DNS filter block or allow a DNS response based on FortiGuard categories in the same way as Web filter does?
Regards,
Julián
The need to use FortiGuard DNS servers as DNS was indeed in earlier versions of FortiOS, but somewhere along 6.0-6.2 it was lifted.
Yes, DNSF can use Category-based filtering as well.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1714 | |
1093 | |
752 | |
447 | |
232 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.