there are so many websites blocked by FortiGate example bank websites and other trusted websites like google drive etc. Configuring the IPsec VPN using the Wizard, 2. Configuring the backup FortiGate for HA, 7. Only the first entry ever was allowed. Create the SSID and set up authentication, WiFi using FortiAuthenticator RADIUS with Certificates, 1. edit 1. set intf "wan1". Enable HTTPS traffic. Switching to VDOM mode and creating two VDOMs, 2. FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic. Adding the signature to the default Application Control profile, 4. Requesting and installing a server certificate for FortiOS, 2. Adding security policies for access to the internal network and the Internet, SSL VPN single sign-on using LDAP-integrated certificates, 2. This article explains how to exempt or block the access to website using the URL filter feature. Second Line: Block "mybluemix.net" with the wildcard. Creating a user group for remote users, 2. Enabling logging in your Internet access security policy, 2. Connecting and authorizing the FortiAP, Captive portal WiFi access with a FortiToken-200, 2. Enabling Application Control and Multiple Security Profiles, 2. How do these priorities affect each other? Give the policy a name that identifies its use. Configuring a user group on the FortiGate, 6. Creating a web filter profile and an override, 4. Configuring user groups on the FortiGate, 7. Go to Policy & Objects > IPv4 Policy, and click Create New. The blocked social networking sites are listed in the Domain column. ; Select the Block malicious websites checkbox. Their users will be accessing and RDS farm with 4 session hosts. I'm running a Fortigate on 6.0.10 (will upgrade if new version has better implementation). 2. I haven't added any wildcards other than what it came with from Fortinet. Exporting the LDAPS Certificate in Active Directory (AD), 2. Editing the security policy for outgoing traffic, 5. 1. Configuring RADIUS EAP on FortiAuthenticator, 4. Bweber93 I'd like to confirm your statement. Verify that you can connect to the gateway provided by your ISP. To rephrase the explanation here - it is webserver hosting data and displaying it in JSON format as REST api. Editing the security policy for outgoing traffic, 5. Go to Security Profiles > Web Filter and edit the default Web Filter profile. Using virtual IPs to configure port forwarding, 1. Connecting and authorizing the FortiAP, Captive portal two-factor authentication with FortiToken Mobile, 2. Created on Exporting the LDAPS Certificate in Active Directory (AD), 2.