Web rating overrides

In this recipe, you will change a website’s FortiGuard web rating. For testing purposes, this website (cookbook.fortinet.com) will be changed from the category Information Technology to a custom category named Allowed Sites.

By changing the web rating for a website, you can control access to the site without affecting the rest of the sites in its original category.

This recipe only changes the website’s rating on your FortiGate. To request that the rating is changed for all of FortiGuard, go here.

1. Enabling web filtering

Go to System > Config > Features and make sure that Web Filter is ON. If necessary, Apply your changes.   

2. Creating a custom category and web rating override

Go to Security Profiles > Advanced > Web Rating Overrides and select Custom Categories.

Create a new category named Allowed Sites.

 

Go to Security Profiles > Advanced > Web Rating Overrides and create a new override.

Enter the website’s URL and select Lookup Rating to see the current rating.

In the Override to section, set Category to Custom Categories and Sub-category to Allowed Sites.

 

3. Adding FortiGuard blocking to the default web filter profile

Go to Security Profiles > Web Filter and edit the default profile. Enable FortiGuard Categories.

 

Expand Local Categories to make sure that the Allowed Sites category is set to Allow.

 

Expand General Interest – Business. Right-click on Information Technology to set it to Block.

 

4. Adding the default web filter profile to a security policy

Go to Policy & Objects > Policy > IPv4 and edit the policy that allows connections from the internal network to the Internet.

Under Security Profiles, turn on Web Filter and use the default profile.

 

5. Results

Browse to www.fortinet.com, which is part of the Information Technology category. A message will appear from FortiGuard, stating that access to this website is blocked.  
If you browse to cookbook.fortinet.com, you will still be able to access the site. 

For further reading, check out FortiGuard Web Filtering Service in the FortiOS 5.2 Handbook.

Victoria Martin

Victoria Martin

Technical Writer & Head Cookbook Chef at Fortinet
Victoria Martin works in Ottawa as part of the FortiOS technical documentation team. She graduated with a Bachelor's degree from Mount Allison University, after which she attended Humber College's book publishing program, followed by the more practical technical writing program at Algonquin College. She does need glasses but also likes wearing them, since glasses make you look smarter.
Victoria Martin

Latest posts by Victoria Martin (see all)

Share this recipe:

Facebooktwittergoogle_pluslinkedin
An active license for FortiGuard Web Filtering Services is required to use web ratings.

Leave a comment:

Before commenting, please read the site's comment policy. Only questions related to documentation will be answered. For other concerns, please contact Fortinet support.