Fortinet black logo

New Features

Allow web filter category groups to be selected in NGFW policies

Copy Link
Copy Doc ID 77966226-6996-11ec-bdf2-fa163e15d75b:472314
Download PDF

Allow web filter category groups to be selected in NGFW policies

When configuring security policies in NGFW policy-based mode, it is possible to select and apply web filter URL categories and groups.

In this example, the potentially liable group (g01), adult/mature content group (g02), and file sharing and storage category (24) are applied in a security policy.

To configure web filter URL categories and groups in a security policy in the GUI:
  1. Go to Policy & Objects > Security Policy, and click Create New or edit an existing policy.
  2. For URL Category, click the +.
  3. Click the FortiGuard Web Filter Category Group section, select Potentially Liable and Adult/Mature Content.
  4. In the FortiGuard Web Filter Category > Bandwidth Consuming section, select File Sharing and Storage.

  5. Configure the other settings as needed.
  6. Click OK.
To configure web filter URL categories and groups in a security policy in the CLI:
config firewall security-policy
    edit 1
        set name "NGFW"
        set srcintf "port2"
        set dstintf "port1"
        set srcaddr "all"
        set dstaddr "all"
        set action accept
        set schedule "always"
        set url-category g01 g02 24
    next
end

Allow web filter category groups to be selected in NGFW policies

When configuring security policies in NGFW policy-based mode, it is possible to select and apply web filter URL categories and groups.

In this example, the potentially liable group (g01), adult/mature content group (g02), and file sharing and storage category (24) are applied in a security policy.

To configure web filter URL categories and groups in a security policy in the GUI:
  1. Go to Policy & Objects > Security Policy, and click Create New or edit an existing policy.
  2. For URL Category, click the +.
  3. Click the FortiGuard Web Filter Category Group section, select Potentially Liable and Adult/Mature Content.
  4. In the FortiGuard Web Filter Category > Bandwidth Consuming section, select File Sharing and Storage.

  5. Configure the other settings as needed.
  6. Click OK.
To configure web filter URL categories and groups in a security policy in the CLI:
config firewall security-policy
    edit 1
        set name "NGFW"
        set srcintf "port2"
        set dstintf "port1"
        set srcaddr "all"
        set dstaddr "all"
        set action accept
        set schedule "always"
        set url-category g01 g02 24
    next
end