Therefore, I was thinking of creating an IP Pool of 128.10.0.[201-209] these are the offenders. Create a FW Object for Facebook.com as a FQDN, then create a policy to shape traffic associated with the FW Object. Am I on the right track? Or can my boss’s assignment even be accomplished without subscriptions?This will work except you will need to create at least three FW FQDN objects (1) www.Facebook.com, 2) Facebook.com, 3) static.ak.fbcdn.net). (A Google seach or check the site info for a complete list of fqdns or IP block range that should be blocked.) For the traffic shaping, set the direction for both ways.
NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
ORIGINAL: g3rman My suggestion would be to use a policy based on application detection. That' s probably more reliable than FQDN. E.g. Source: Any Destination: Any App: Facebook Action: Rate LimitDoesn' t this require a subscription? He doesn' t have one at this time, but I agree with your post.
Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.