Fortinet black logo

Administration Guide

Home FortiSASE Administration Guide

Default SWG policies

Default SWG policies

FortiSASE is configured with the following default secure web gateway (SWG) policies:

SWG policy

Description

DENY_BOTNET

Denies traffic to known botnet C&C servers for all SWG users. You cannot edit or delete this SWG policy.

Allow-All

Allows traffic for all services for all SWG users. You can edit and delete this SWG policy.

Implicit Deny

Denies access to traffic that does not match another configured SWG policy. You cannot edit or delete this SWG policy.

With only these default SWG policies and no custom configurations, FortiSASE blocks all traffic to known botnet C&C servers, allows all other traffic to pass through the Allow-All SWG policy, and applies the enabled security components for scanning and processing.

Previous
Next

Default SWG policies

FortiSASE is configured with the following default secure web gateway (SWG) policies:

SWG policy

Description

DENY_BOTNET

Denies traffic to known botnet C&C servers for all SWG users. You cannot edit or delete this SWG policy.

Allow-All

Allows traffic for all services for all SWG users. You can edit and delete this SWG policy.

Implicit Deny

Denies access to traffic that does not match another configured SWG policy. You cannot edit or delete this SWG policy.

With only these default SWG policies and no custom configurations, FortiSASE blocks all traffic to known botnet C&C servers, allows all other traffic to pass through the Allow-All SWG policy, and applies the enabled security components for scanning and processing.

Previous
Next