Hot!Web filtering on Fortinet 90D

Author
dime
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/01/23 05:01:17
  • Status: offline
2018/01/23 05:50:40 (permalink)
0

Web filtering on Fortinet 90D

Hi all
We used to have a web filter in place for one of our clients which stopped them accessing YouTube etc. They have since decided they want this turned off which we have done from the web interface however, they are still unable to access YouTube. I'm new to looking at Firewalls etc and do we need to perform a restart in order for the Firewall to pick this change up? I've had a look within Application Control and video/audio is allowed so I'm a little bit confused as to where this is now being blocked from? Any help would be gratefully received.
Thanks
Josh
#1

5 Replies Related Threads

    ede_pfau
    Expert Member
    • Total Posts : 5537
    • Scores: 368
    • Reward points: 0
    • Joined: 2004/03/09 01:20:18
    • Location: Heidelberg, Germany
    • Status: offline
    Re: Web filtering on Fortinet 90D 2018/01/23 10:12:29 (permalink)
    0
    hi,
     
    there might be a chance that there are still old sessions continuing even after you've changed the webfilter setting. A reboot of the FGT will clear all sessions of course, and it will clear up possible memory issues etc. I'd try that first, preferably at night/low-traffic periods.

    Ede

    " Kernel panic: Aiee, killing interrupt handler!"
    #2
    dmcquade
    Bronze Member
    • Total Posts : 57
    • Scores: 2
    • Reward points: 0
    • Joined: 2016/10/31 06:21:51
    • Status: offline
    Re: Web filtering on Fortinet 90D 2018/01/23 17:17:39 (permalink)
    0
    If the firewall is blocking access, there is unlikely to be any open sessions. I'd start by logging all traffic on the rule and review each security profile applied to the rule that allows this traffic. Chances are the forward traffic log will tell you something about what is causing the block. Are there any block messages displayed? If so, it should say somewhere on the page why it is being blocked. I.E. Webfiltering, Application Control, IPS, etc.
     
    HTH
    d
    #3
    ede_pfau
    Expert Member
    • Total Posts : 5537
    • Scores: 368
    • Reward points: 0
    • Joined: 2004/03/09 01:20:18
    • Location: Heidelberg, Germany
    • Status: offline
    Re: Web filtering on Fortinet 90D 2018/01/24 02:40:34 (permalink)
    0
    and as usual, 'diag debug flow' is your friend...the end to speculation.

    Ede

    " Kernel panic: Aiee, killing interrupt handler!"
    #4
    bbrown
    New Member
    • Total Posts : 1
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/02/20 10:59:08
    • Status: offline
    Re: Web filtering on Fortinet 90D 2018/02/20 11:02:54 (permalink)
    0
    Wow and this goes unanswered. I have a similar problem with a 60E device.
    #5
    ede_pfau
    Expert Member
    • Total Posts : 5537
    • Scores: 368
    • Reward points: 0
    • Joined: 2004/03/09 01:20:18
    • Location: Heidelberg, Germany
    • Status: offline
    Re: Web filtering on Fortinet 90D 2018/02/22 07:09:55 (permalink)
    0
    As with quite a few threads, the OP hasn't followed up. Perhaps we'll never know what his/her solution was.
     
    It may be a config error, some other UTM (AppControl), routing, policies, wrong custom service,...working on such thin ice can be frustrating at times. And usually will not yield a solid answer ('**** in, **** out').

    Ede

    " Kernel panic: Aiee, killing interrupt handler!"
    #6
    Jump to:
    © 2018 APG vNext Commercial Version 5.5