Allow access only to Microsoft update services
I have an upstream WSUS server in my DMZ which should be allowed to only access the Microsoft update services resumed in these urls:https://*.microsoft.comhttps://*.update.microsoft.comhttp://*.windowsupdate.comhttp://*.download.windowsupdate.comhttps://*.windowsupdate.microsoft.comhttp://*.update.microsoft.comhttp://*.windowsupdate.microsoft.com
I tried two ways but I failed in
I blocked all Fortiguard web categories and added a url filter allowing all the needed urls (as you can see in attach1).
This doesn't work since the urls were blocked by the web categories filter as belonging to the blocked Information Technologie category.
I disabled the web categories filter and added a blocking filter at the end of the url filter list (attach2). But access was also blocked. I also tried allow and exempt in the url filter but the result was the same.
Could anyone help ?