Hot!No "https://www" returns web page blocked

Author
tgps26
New Member
  • Total Posts : 2
  • Scores: 0
  • Reward points: 0
  • Joined: 2019/11/05 04:02:31
  • Status: offline
2019/11/05 04:09:58 (permalink)
0

No "https://www" returns web page blocked

Solved! :)
post edited by tgps26 - 2019/11/24 14:47:21
#1

2 Replies Related Threads

    Dave Hall
    Expert Member
    • Total Posts : 1678
    • Scores: 174
    • Reward points: 0
    • Joined: 2012/05/11 07:55:58
    • Location: Canada
    • Status: offline
    Re: No "https://www" returns web page blocked 2019/11/05 06:45:43 (permalink)
    0
    Perform an nslookup on both agitapp.com and www.agitapp.com and you will find they resolve differently. 
     
    If you have security event logging enabled on the firewall policy covering web traffic, check the web logs for the "flagged" event to see why it is blocked.  But from the screenshot, the error message says "Newly Observed domain" which likely means the site has not been rated yet by the FortiGuard servce.  You can of course, add that site to a local ratings override.

    NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
    #2
    sw2090
    Platinum Member
    • Total Posts : 612
    • Scores: 40
    • Reward points: 0
    • Joined: 2017/06/14 01:27:25
    • Location: Regensburg
    • Status: offline
    Re: No "https://www" returns web page blocked 2019/11/05 23:48:34 (permalink)
    0
    Accoarding to your Screenshots the http Site is blocked by webfilter by FortiGuard(tm) Category .
    You didn't write if that is wanted behaviour. If it is not check wether you have a rating override into an allowed cathegory for it or allow the cathegory. Also if you use webfilter check your rules. If it is allowed by url filter but thus blocked by webfilter set the accoarding url filter rule to exempt instead of allow to prevent this.
     
    If wanted behaviour should be to block both http and https check if you have ssl inspection enabled on the corresponding policy and if in ssl inspection profile https is enabled and the cathegory is not in the trusted sites list.
     
    hth
    Sebastian
    #3
    Jump to:
    © 2020 APG vNext Commercial Version 5.5