Restricting web usage using content filter
Restricting web usage using content filter for HTTPS pages requires enabling SSL deep inspection. See Certificate and deep inspection modes.
To restrict web usage using content filter:
- Go to Configuration > Security.
- In the Web Filter With Inline-CASB widget, click Customize.
- Under Content Filter, click Create.
- For Pattern Type, select one of the following:
Type
Description
Wildcard
Blocks or exempts one word or text strings of up to 80 characters. You can also use wildcard symbols such as ? or * to represent one or more characters. For example, a wildcard expression forti*.com matches fortinet.com and fortiguard.com. The * represents any character appearing any number of times.
RegExp
Blocks or exempts patterns of regular expressions that use some of the same symbols as wildcard expressions, but for different purposes. In regular expressions, * represents the character before the symbol. For example, forti*.com matches fortiii.com but not fortinet.com or fortiice.com. In this case, the symbol * represents i appearing any number of times.
- In the Pattern field, enter the desired pattern.
- From the Language dropdown list, select the desired language.
- For Action, select one of the following:
Type
Description
Exempt
Allows the traffic to pass through, bypassing other content filters, antivirus inspection engine, and DLP inspection engine.
Block
Denies or blocks attempts to access any URL that matches the URL pattern. A replacement message displays.
- Configure the status as desired.
- Click OK.