- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Web filtering not performed following Application control
Hello,
Hope someone can help here.
The fortigate seems to skip web filtering following application control. Is this normal?
Thanks in advance.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi krusty,
I replied to the PM. Can you enable certificate-inspection under "SSL Inspection"? If you do not enable that, the IPS engine will not scan any SSL sessions.
HoMing
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello krusty,
If you enabled a Web Filter profile with Application Control, and the App Control action does not drop the traffic, no, it should not skip web filtering. However, if App Control drops the traffic, then Web Filter will not apply. How did you test your policy? Can you send me your configuration file and let me know which policy ID are you using?
HoMing
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello!
Application Control and IPs were applied before web filter, so this is a normal behaviour.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
I've PM'ed you the config.
Following application control we can still get to the blocked sites.
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi krusty,
I replied to the PM. Can you enable certificate-inspection under "SSL Inspection"? If you do not enable that, the IPS engine will not scan any SSL sessions.
HoMing
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Are you using Proxy or flow mode?
Did you checked the following Settings?:
config firewall profile-protocol-options
config http
set Status enable # <- this must be enabled ; otherwise webfiltering AND AV won't work
end
next
end
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
Thanks for the response.
It is in proxy-based mode.
config firewall profile-protocol-options is not enabled. Will this cause a loss of access on other policies if I enable it?
Cheers
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Enabling certificate inspection worked.
Thanks for your help guys!! :)
