Why is Fortinet blocking SSL connections to iCloud-related domains?

tuan2tech · ‎05-14-2025

Hi everyone,

I'm seeing multiple denied SSL connections in my FortiGate logs, and I can't figure out exactly why this is happening or whether it's necessary to keep blocking them.

AEK · ‎05-15-2025

Hi Tuan

Your logs show UTM Blocked. That means in the policy that is blocking this traffic there some security profile (App Ctrl or Web Filter) denying this traffic.

AEK

tuan2tech · ‎05-15-2025

According to the image, it is being blocked under the "Network Services" category, but I haven't blocked anything.

AEK · ‎05-15-2025

Please double click on the related log entry, on the right pan open the Security tab, there you should find more information on what blocked the traffic.

AEK

nweckel · ‎05-15-2025

Hello @tuan2tech

You can also check in Security Events logs for WebFilter, Application control, SSL... depending on which UTM profiles you have configured in firewall policy LAN to WAN.

primadeluxe · ‎05-26-2025

Same issue here..

Rino_B · ‎05-26-2025

Possibly it is an SSL block with event subtype certificate-probe-failed? Please check: https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-How-to-fix-SSL-connection-is-blocked...

Rino_B - FCS

Why is Fortinet blocking SSL connections to iCloud-related domains?

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website