Description
This article describes that a FortiGuard rating unavailable message appears when a rating lookup is performed on FortiGate Web Rating Overrides.
The example server here is unknown via the FortiGuard web filtering service.
Solution
Make sure that the 'FortiGuard Filtering Services' are active and available (Green Arrows) under System -> FortiGuard.
If the 'Filtering Services' are active, it is expected that FortiGate will return the message 'FortiGuard rating unavailable'.
The cause is that FortiGate can rate only those IPs which are already categorized on the FortiGuard servers.
Try to change Anycast servers: Ti is recommended to disable any cast and switch it to unicast.
config system fortiguard
set fortiguard-anycast disable
set protocol udp
set port 53
end
If the IP is not rated on FortiGuard servers (Not Rated), then FortiGate will not be able to rate it as well, but it is still possible to add that IP as an overriding category to allow traffic without doing the Rating lookup.
To have the IP categorized, submit a review request to the FortiGuard web filter team: https://www.fortiguard.com/faq/wfratingsubmit
Related Article:
