Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
sandy123
New Contributor

Created on ‎04-24-2023 02:00 AM

how to block android mobiles using internet

Hello friends

i am trying to block android mobiles from accessing internet but nothing is working out. Can anyone help me please. I have also tried fallowing the bellow link but it's not working.

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Usage-of-application-control-to-block-Mobi...

SP
SP
Labels:
4134
0 Kudos
8 REPLIES 8
ebilcari
Staff
Staff

Created on ‎04-24-2023 02:38 AM Edited on ‎04-24-2023 02:41 AM

Kindly take a look at this article for MAC address filter from device identification: 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-how-to-create-the-MAC-address-filter-from-...

or NAC policies:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Using-FortiGate-to-detect-Hikvision-IP-Cam...

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
4125
0 Kudos
sandy123
New Contributor
In response to ebilcari

Created on ‎04-24-2023 10:10 PM

Hello Emijon,

Thanks for your reply the mac based filtering is working fine but what my company wants is that blocking the device directly on wifi like android phone. So it is possible to do it without mac based filter ?

For NAC i don't have forti witches.

 

Regards,

Sandeep

SP
SP
4084
0 Kudos
kgeorge
Staff
Staff

Created on ‎04-24-2023 05:56 AM

Hello Sandy,

 

Did you try the same thing with Deep Inspection in the Firewall Policy,

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Usage-of-application-control-to-block-Mobi...

 

Kindly try if not done yet as it mostly works.

 

Regards,

Klint George

Regards,
Klint George
4100
0 Kudos
sandy123
New Contributor
In response to kgeorge

Created on ‎04-24-2023 10:07 PM

Hello Klint,

I tried i but it dosen't work after applying this policy the android users are still able to access the internet

 

Regards,

Sandeep

SP
SP
4084
0 Kudos
gfleming
Staff
Staff

Created on ‎04-24-2023 11:19 AM

You're going to need a full-blown NAC solution for this. Yes you can probably block based on MAC address but Android is an operating system that runs on many many many types of devices.

 

If you have FortiSwitches you could try FortiLink NAC. See here for more details: https://docs.fortinet.com/document/fortiswitch/7.2.4/fortilink-guide/173271/fortiswitch-network-acce...

 

You can detect OS with this. But again it might not be as effective as full-blown NAC like FortiNAC.

Cheers,
Graham
4091
0 Kudos
sandy123
New Contributor
In response to gfleming

Created on ‎04-24-2023 10:13 PM

Hello Graham,

Thanks for your reply but sadly i don't have forti switches

 

Regards,

Sandeep

SP
SP
4084
0 Kudos
gfleming
Staff
Staff
In response to sandy123

Created on ‎04-25-2023 08:21 AM

Then to do what you want you need FortiNAC. A NAC solution will actively profile every device that connects to your network and determine what kind of device it is. Using policies you can effectively block all Android devices from joining you network using NAC.

 

There's really no way else around it.

Cheers,
Graham
4054
0 Kudos
Johnharper
New Contributor III

Created on ‎04-25-2023 02:10 AM

Simply go to the App info page of that particular app and select the Restrict Data Usage option. 2. A pop-up will open with Wi-Fi and Mobile Data options, you can disable both to completely block the app to use the internet.

4063
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.