what is the simplest way to block facebook.com
the "fortiguard categories" does not seem to do it.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Recommended to use App Control inorder for your to block facebook.
Fortigate Newbie
Recommended to use App Control inorder for your to block facebook.
Fortigate Newbie
Block it in URL filter using wildcard
like facebook.com and *.facebook.com
Regards
Suneel
this does not block https://facebook.com only HTTP
dirkdigs wrote:this does not block https://facebook.com only HTTP
SSL or deep inspection needs to be enabled on the firewall rule covering web traffic.
That being said, Fortinet has already published the steps for blocking facebook here, as well a video walkthru here.
NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
i had to install the fortinet ssl certificate into client web browser or else it would block ALL HTTPS sites.
If you enable SSL/SSH inspection on your firewall policy using a profile that has "SSL Certificate Inspection" instead of "SSL Full Inspection" you should be able to block without resorting to Full SSL inspection. Keep in mind that when the Fortigate presents the blocked page message it will be using its own certificate and that will result in certificate warnings in browsers.
yea well nobody wants the see a security error every time they hit a webpage using HTTPS. so installing the certificate is the only was to accomplish this.
Certificate inspection would only give the cert warning on blocked pages.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1688 | |
1087 | |
752 | |
446 | |
227 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.