Hot!Bypass web filter for one user

Author
hsd
New Member
  • Total Posts : 3
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/09/07 07:18:33
  • Status: offline
2018/09/07 07:23:56 (permalink) 5.6
0

Bypass web filter for one user

Hello,
We are a school district that just switched from Cisco ASA devices to FortiGate 201E firewalls for our schools. Our firewall is in flow-based inspection mode and is on version 5.6.3. We block Facebook, but want to allow just the principal to access it to update the school's Facebook page. Is there a way to whitelist his IP/MAC address or have a way for him to log in to get to Facebook?
 
Thank you.
#1

5 Replies Related Threads

    Toshi Esumi
    Expert Member
    • Total Posts : 1125
    • Scores: 66
    • Reward points: 0
    • Joined: 2014/11/06 09:56:42
    • Status: offline
    Re: Bypass web filter for one user 2018/09/07 09:22:45 (permalink)
    1 (1)
    Create a new policy and put the principal's device's IP in source address, then allow whatever you want to allow as services then place it above the existing policies. Don't forget to enable nat.
    #2
    hsd
    New Member
    • Total Posts : 3
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/09/07 07:18:33
    • Status: offline
    Re: Bypass web filter for one user 2018/09/07 09:57:24 (permalink)
    0
    Thank you. I'll have a look at that.
    #3
    darwin_FTNT
    Bronze Member
    • Total Posts : 31
    • Scores: 2
    • Reward points: 0
    • Joined: 2018/04/24 18:12:28
    • Status: offline
    Re: Bypass web filter for one user 2018/09/08 13:44:49 (permalink)
    0
    Seems the feature webfilter web override supports that function.  It is working for proxy-based utm.  For flow-based utm, the feature has been finished porting but haven't been committed to trunk.  It should be available in FOS v6.x release (approximately, depends on developer porting the feature).
    #4
    hsd
    New Member
    • Total Posts : 3
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/09/07 07:18:33
    • Status: offline
    Re: Bypass web filter for one user 2018/09/11 08:06:11 (permalink)
    0
    Thank you Darwin. I'll have a look at the possibility of an OS upgrade.
    #5
    tanr
    Platinum Member
    • Total Posts : 537
    • Scores: 20
    • Reward points: 0
    • Joined: 2016/05/09 17:09:43
    • Status: offline
    Re: Bypass web filter for one user 2018/09/11 08:11:10 (permalink)
    0
    Might be better/safer/simpler to just have a duplicate security policy for your principals user account / device with a different web filter, rather than upgrade the OS.
    #6
    Jump to:
    © 2018 APG vNext Commercial Version 5.5