Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mramalinga
Staff
Staff

Created on ‎03-18-2021 05:09 AM Edited on ‎01-10-2022 12:07 PM By Anonymous

Article Id 190747

Technical Tip: Web rating override does not work after upgrade to 6.2.5/6.4.2

Description
This article explains the changes made around the Web Filter override starting FortiOS 6.2.5 and 6.4.2.

Scope

- For FortiGate 6.2.5 and above.
- For FortiGate 6.4.2 and above.


Solution
In the GUI, an Allow action of a local/remote category when editing a web filter profile is effectively a shortcut to disable the local/remote category overrides.
The URLs subject to rating overrides will now only take effect if the local category action is set to ‘Monitor’.

For example: In case the site www.google.com is overwritten to 'Business' Category, set action 'Monitor' to the 'Business' Category instead of 'Allow'.

From CLI:

# config webfilter profile
    edit <web filter profile>
        config ftgd-wf
        config filters
            edit <>
                set category <custom category>
                set action monitor
            next
        next
        end
    next
end

Reference: https://docs.fortinet.com/document/fortigate/6.4.2/fortios-release-notes/230510/changes-in-default-b...- Search for '630433'.



 
 

 

12511
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.