Solved

Fortigate not allowing connections to IP based URL

Posted on 2014-02-06
2
881 Views
Last Modified: 2014-03-27
We have a FortiWiFi 40C protecting our network.

We need to connect to a site on the web that does not have a DNS name but only an IP address.

It tries to connect and says "this page cannot be displayed" and gives an option to fix connection problems?

if I try to connect to the same site using the WiFi connection on the same Fortigate it works fine, as well as from outside the network.

Is there some setting that has disabled connections to sites that use an IP address and not a "name" or is it possible that it checks reverse lookups and rejects the browse because of this ?

thank you
0
Comment
Question by:terryfos
  • 2
2 Comments
 
LVL 62

Expert Comment

by:btan
ID: 39843383
0
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 39843386
In the extreme to see if it is the box, disable the policy and see if the traffic goes through for IP and URL, else review the web filter rules and in particular this one below

http://docs-legacy.fortinet.com/cb/html/index.html#page/FOS_Cookbook/UTM/cb_utm_wf_check_ip_addresses.html

Also the web sites your users visit will be recorded in the UTM log. The default settings of the UTM log page do not display the URLs. Configure the log settings to display URLs. When you view the UTM log, the hostname column will display the domain name of site, and the URL will display the path of the file accessed on the host.

http://docs-legacy.fortinet.com/cb/html/index.html#page/FOS_Cookbook/UTM/cb_utm_wf_block_urls.html
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In every aspect, security is essential for your business, and for that matter you need to always keep an eye on it. The same can be said about your computer network system too. Your computer network is prone to various malware and security threats t…
Resolve DNS query failed errors for Exchange
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now