Professional Documents
Culture Documents
Web Filtering
Module 9
2013 Fortinet Training Services. This training may not be recorded in any medium, disclosed, copied, reproduced or
1 distributed to anyone without prior written consent of an authorized representative of Fortinet. Rev. 20130215-C
Module Objectives
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Web Filtering
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
www.acme.com
DNS Request
DNS Response
!
TCP 3-Way Handshake
HTTP GET
! HTTP 200
10
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Exempt Block
URL
Web URL Allow FortiGuard
Filter Filter
Block Allow
Block Page
Allow
Block Advanced Content
Block Page
Filter Filter
Allow Block
Block Page
Allow
Block
Block Page Virus Scan Display Page
11
Proxy-Based
Highly secure
Traffic is cached
Flow-Based
High throughput
No caching
Not as secure
DNS-Based
Very lightweight
Hostname filtering only
No advanced options, URL and FortiGuard only
12
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
13
14
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
www.mypage.com/index.html
Block
Allow
Monitor
Exempt
www.mypage.com
15
Safe Search is used by search sites to prevent explicit web sites and
images from appearing in search results
FortiGate unit rewrites the search URL to include the required codes to
enable Safe Search
Supported for Google, Bing and Yahoo!
Does not force strict safe search
Youtube EDU available
Instructions for Youtube will include value to enter on FortiGate unit
16
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Allow
Block
Monitor
Warning
Authenticate
www.mypage.com
17
18
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
19
FortiGuard Caching
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Category:
Games Quota Games
21
Rating Submissions
22
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Rating Override
www.acme.com
Sub-Category: Information and Computer Security
23
Rating Override
24
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Local Categories
25
Warning Action
26
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Authenticate Action
Marketing
www.hackthissite.org
27
28
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs Web Filtering
Labs
29
30
01-50000-0201-20130215-C