Default SWG policies
FortiSASE is configured with the following default secure web gateway (SWG) policies:
SWG policy |
Description |
---|---|
DENY_BOTNET |
Denies traffic to known botnet C&C servers for all SWG users. You cannot edit or delete this SWG policy. |
Allow-All |
Allows traffic for all services for all SWG users. You can edit and delete this SWG policy. |
Implicit Deny |
Denies access to traffic that does not match another configured SWG policy. You cannot edit or delete this SWG policy. |
With only these default SWG policies and no custom configurations, FortiSASE blocks all traffic to known botnet C&C servers, allows all other traffic to pass through the Allow-All SWG policy, and applies the enabled security components for scanning and processing.