Fortinet black logo

Administration Guide

Home FortiSASE Administration Guide

Restricting web usage using content filter

Copy Link
Copy Doc ID 4ed231bf-e303-11ee-8c42-fa163e15d75b:580752
Download PDF

Restricting web usage using content filter

Restricting web usage using content filter for HTTPS pages requires enabling SSL deep inspection. See Certificate and deep inspection modes.

To restrict web usage using content filter:
  1. Go to Configuration > Security.
  2. In the Web Filter With Inline-CASB widget, click Customize.
  3. Under Content Filter, click Create.
  4. For Pattern Type, select one of the following:

    Type

    Description

    Wildcard

    Blocks or exempts one word or text strings of up to 80 characters. You can also use wildcard symbols such as ? or * to represent one or more characters. For example, a wildcard expression forti*.com matches fortinet.com and fortiguard.com. The * represents any character appearing any number of times.

    RegExp

    Blocks or exempts patterns of regular expressions that use some of the same symbols as wildcard expressions, but for different purposes. In regular expressions, * represents the character before the symbol. For example, forti*.com matches fortiii.com but not fortinet.com or fortiice.com. In this case, the symbol * represents i appearing any number of times.

  5. In the Pattern field, enter the desired pattern.
  6. From the Language dropdown list, select the desired language.
  7. For Action, select one of the following:

    Type

    Description

    Exempt

    Allows the traffic to pass through, bypassing other content filters, antivirus inspection engine, and DLP inspection engine.

    Block

    Denies or blocks attempts to access any URL that matches the URL pattern. A replacement message displays.

  8. Configure the status as desired.
  9. Click OK.
Previous
Next

Restricting web usage using content filter

Restricting web usage using content filter for HTTPS pages requires enabling SSL deep inspection. See Certificate and deep inspection modes.

To restrict web usage using content filter:
  1. Go to Configuration > Security.
  2. In the Web Filter With Inline-CASB widget, click Customize.
  3. Under Content Filter, click Create.
  4. For Pattern Type, select one of the following:

    Type

    Description

    Wildcard

    Blocks or exempts one word or text strings of up to 80 characters. You can also use wildcard symbols such as ? or * to represent one or more characters. For example, a wildcard expression forti*.com matches fortinet.com and fortiguard.com. The * represents any character appearing any number of times.

    RegExp

    Blocks or exempts patterns of regular expressions that use some of the same symbols as wildcard expressions, but for different purposes. In regular expressions, * represents the character before the symbol. For example, forti*.com matches fortiii.com but not fortinet.com or fortiice.com. In this case, the symbol * represents i appearing any number of times.

  5. In the Pattern field, enter the desired pattern.
  6. From the Language dropdown list, select the desired language.
  7. For Action, select one of the following:

    Type

    Description

    Exempt

    Allows the traffic to pass through, bypassing other content filters, antivirus inspection engine, and DLP inspection engine.

    Block

    Denies or blocks attempts to access any URL that matches the URL pattern. A replacement message displays.

  8. Configure the status as desired.
  9. Click OK.
Previous
Next