we have been experiencing a case where users cant access websites after upgrading their iOS to 15.5
users using 15.4 and lower have no problem accessing websites via firewall. upon searching, seems like that the new feature from iOS 15 called "hide my ip" seems to be the culprit. From the log, seems the apple domains are being blocked with UTM which is causing our users no access to website.
by the way, when doing the exact same operation from outside corporate network (no forti) they can access the website without a problem
we have submite a webfiltering permit case to forti but i was wondering if anyone else was experiecing this?
Created on 06-10-2022 09:28 AM
Hello @sysneeb ,
Thank you for posting on Fortinet Forum. As per the research on your query, it seems like iOS while using "Hide my IP" feature is sending these via the QUIC protocol to mask.icloud.com and mask.apple-dns.net.
Please check your application control profile and see if you are blocking QUIC. You can create a test policy and a test application profile and disable QUIC and confirm if that fixes this issue.
Let me know if this works.
Thanks
Here are a few reasons why Safari might be blocked on your iPhone, and here are some steps you can try to fix it:-
1. Restart your iPhone:- Sometimes a simple restart can resolve temporary glitches.
2. Check your internet connection:- Try connecting to a different Wi-Fi network or using mobile data to see if the issue persists.
3. Force close Safari:- Swipe up on the Safari app preview card to close it completely. Then relaunch it.
4. Clear Safari Data:- Go to Settings > Safari > Clear History and Website Data. This can clear any corrupted data that might be causing problems.
5. Enable Javascript:- Go to Settings > Safari > Advanced and make sure JavaScript is turned on.
6. Check Screen Time:- If you have Screen Time enabled with restrictions, Safari might be blocked. Go to Settings > Screen Time > Content & Privacy Restrictions. Check if Safari is disabled under "Allowed Apps".
7. Malicious Website:- If the blockage only happens on a specific website, it might be a malicious site. Try opening a different website to see if the issue persists.
8. VPN Issues:- If you're using a VPN, try disabling it temporarily to see if it resolves the problem.
More effective instruction below.
https://www.youtube.com/watch?v=Bm_PGay25_8&ab_channel=TheGeekPage
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.