Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
kssupport
New Contributor

Created on ‎10-21-2025 05:57 PM

help - suddenly some clients can't access reguler website

hi there,

I need help please.

I use FG60F with firmware 7.2.x

 

I've created firewall policy with webfilter and ssh inspection.

 

suddenly, some computers can't access certain https website, but the other PC still can access the web without issue.

 

if the -problem computers- use direct internet (not via fortinet), they can access the website.

 

where is the issue? anyone has same experience?

 

thank you

198
0 Kudos
6 REPLIES 6
AEK
SuperUser
SuperUser

Created on ‎10-22-2025 02:16 AM

Hi

What the the x in 7.2.x?

Check the workaround mentioned in this fresh post, it is probably the same issue.

https://community.fortinet.com/t5/Support-Forum/Major-lags-with-enabled-web-filter-on-FortiGate-70G-...

AEK
AEK
166
0 Kudos
kssupport
New Contributor
In response to AEK

Created on ‎10-24-2025 02:19 AM

hi thanks for sharing the link. but seems differnt situation.

 

by the way, the firmware is 7.2.4

138
0 Kudos
AEK
SuperUser
SuperUser
In response to kssupport

Created on ‎10-26-2025 01:35 PM

7.2.4 is not mature and many Web filter related issues have been fixed after.

Try update to 7.2.12 which is the most stable of the 7.2 version. 

AEK
AEK
117
0 Kudos
yderek
Staff
Staff

Created on ‎10-26-2025 01:50 PM

@kssupport  Hi, Thanks for reaching forum 

As AEK mention above, the 7.2.4 isn't the mature version and it's not the lateset version , consider to upgrade to the latesd 7.2.x version after you review the release note of knonw issue 

For the issue you facing now 

-What logs do you see in the forward traffic for the blocked user ? 

-What error does user get from the website when they not able to access ? 

-What ssl inspection profile do you use in the firewall policy 

-Does user using the up to date browser ? 

110
0 Kudos
kssupport
New Contributor
In response to yderek

Created on ‎10-28-2025 07:21 PM

hi,

sorry late feedback.

 

- What logs do you see in the forward traffic for the blocked user ?

do you mean PC? however, there is no log under forward traffic, even though I already enabled log for all activity on related firewall policy

-What error does user get from the website when they not able to access ?

site cannot be reached....ERR Connection close

-What ssl inspection profile do you use in the firewall policy

ss inspection based on default, with modify method to full ssl inspection, and some parameter (as attached)

 ssl.PNG

 

web fliter as captured, and I already added wild url to url filter list.

 

-Does user using the up to date browser ? yesweb.PNG

87
0 Kudos
Shyy
New Contributor II

Created on ‎10-28-2025 10:35 PM

I'd suggest to try and configure your policy and filter as proxy based if it is currently flow based.

71
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.