Time
1 hour 35 minutes
Difficulty
Beginner

Video Description

In this video, you will learn how to use a URL filter to block access to a specific website: Facebook, and it's subdomains. When you enable the FortiGuard Categories to allow access to a particular type of content, such as Social Networking, you can still prohibit the use of specific websites within that category. Visit Fortinet's documentation library at http://docs.fortinet.com

Video Transcription

00:00
In this video, you will learn how to use a you Earl filter to block access to a specific website, Facebook. And it's sub domains
00:09
when you enable the Ford A Guard categories to allow access to a particular type of content. Such a social networking, you can still prohibit the use of specific websites within that category.
00:26
First, go to system dashboard status and verify your 40 guard service is subscription.
00:34
If you have an active subscription in the license information, which it, you will see a green check mark beside four to guard Web filtering.
00:47
Next, go to Security Profile's Web filter and edit the default Web filter
00:56
said inspection mode to proxy
01:00
enable four to guard categories. You can set these categories to allow, block, monitor, warn or authenticate, depending on the type of content.
01:10
To learn more, go to the fort. A Guard Center's Web filtering rating page at Ford a guard dot com.
01:18
Enter a website You Earl to find out it's category rating.
01:23
Facebook is in the social networking category
01:26
to prohibit visiting one particular social networking site in that category, scroll down and enabled the static Earl
01:34
create a new filter and enter the Earl of the website you wish to block
01:41
to block also domains of a website set type toe wild card.
01:47
Use an asterisk as a wild card character.
01:49
Set action to block and set status to enable
02:02
Goto policy and objects Policy. SSL inspection To verify your SSL inspection profile settings, you will enable SSL inspection to prevent https access to the Web site you are attempting to block.
02:19
Select the certificate inspection profile.
02:22
Ensure that see a certificate is set to the default Fortinet C. A s s o proxy
02:29
ensure inspection method is set toe SSL certificate inspection To avoid the potential certificate errors that may occur with full SSL inspection.
02:38
A naval sshh deep scan
02:50
Go to Policy and Objects Policy I p. V. Four and create a new policy that uses the Web filter and SSL inspection profile that you created earlier.
03:02
Set the incoming interface to the internal interface.
03:08
Set the outgoing interface to the Internet Facing interface
03:20
Insure Nat is enabled under Security Profile's enable Web filter and select the default Web filter.
03:28
This automatically enables S. S L S S H inspection
03:35
Select certificate inspection from the drop down menu
03:39
ensure that your policy is at the top of the list. To move your policies, simply click and drag the far left column of the policy.
03:58
Open a browser and visit the website that you're attempting to block in this case. Facebook dot com. To ensure that your Web filters successfully blocks http access
04:09
afford a guard Web page. Blocked page should appear.
04:12
Sub domains of Facebook are also blocked because the wildcard filter was used.
04:20
Verify that https access is also blocked by the SSL. As the sage inspection profile that you created,
04:30
a Web page blocked page should appear.
04:34
Thank you for watching. For more information, you can access Ford in its documentation library at doc's dot Fortinet dot com.

Up Next