Hello.
We are trying to implement web filtering for a particular server where we only want the server to be able to access a single URL. We have Web Filtering working, except for the fact that in Chrome when you go to www.google.com it goes to the site. This is bypassing both the wildcard blocking rule and the specific blocking rule for www.google.com. Not only does it go to the page, but it also allows you to search. clicking on search results fails, but you can still see results as well as the image tab. Oddly, going to images.google.com or drive.google.com or www.google.fr all are blocked as expected.
Is there something I am missing here?
Try this to block QUIC if the behavior persists:
Tried disabling QUIC and blocking it on the Fortigate and it still lets it through... and it's ONLY www.google.com... and ONLY in Chrome... no other site works...
Policies are hit from the top of the list down. Make sure you put that block policy above the one that allows QUIC.
Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com
Run flow debug "diag debug flow" to see the chrome's google access is actually hitting the policy, which is supposed to block but be allowing. Then open a ticket with TAC.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.