Fortinet black logo

Administration Guide

Home FortiProxy 7.0.0 Administration Guide
7.0.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.0
7.0.17
7.0.0
2.0.0
1.2.0
1.1.0
1.0.0

DNS Filter

DNS Filter

You can configure DNS filtering to allow, block, or monitor access to web content according to FortiGuard categories. When DNS filtering is enabled, your FortiProxy unit must use the FortiGuard DNS service for DNS lookups. DNS lookup requests sent to the FortiGuard DNS service return with an IP address and a domain rating that includes the FortiGuard category of the web page.

If that FortiGuard category is set to block, the result of the DNS lookup is not returned to the requester. If the category is set to redirect, then the address returned to the requester points at a FortiGuard redirect page.

You can also allow or monitor access based on the FortiGuard category.

To view available DNS filter profiles, go to Security Profiles > DNS Filter.

Hover over the leftmost edge of the column heading to display the Configure Table icon, which you can use to select the columns to display or to reset all the columns to their default settings. You can also drag column headings to change their order.

The following options are available:

Create New

Create a DNS filter profile. See Create or edit a DNS filter profile.

Edit

Modify the selected DNS filter profile. See Create or edit a DNS filter profile.

Clone

Make a copy of the selected DNS filter profile.

Delete

Remove the selected DNS filter profile.

Search

Enter a search term to find in the DNS filter list.

Name

The name of the DNS filter profile.

Comments

An optional description of the DNS filter profile.

Ref.

Displays the number of times the object is referenced to other objects.

To view the location of the referenced object, select the number in Ref.; the Object Usage window opens and displays the various locations of the referenced object.
Previous
Next

DNS Filter

You can configure DNS filtering to allow, block, or monitor access to web content according to FortiGuard categories. When DNS filtering is enabled, your FortiProxy unit must use the FortiGuard DNS service for DNS lookups. DNS lookup requests sent to the FortiGuard DNS service return with an IP address and a domain rating that includes the FortiGuard category of the web page.

If that FortiGuard category is set to block, the result of the DNS lookup is not returned to the requester. If the category is set to redirect, then the address returned to the requester points at a FortiGuard redirect page.

You can also allow or monitor access based on the FortiGuard category.

To view available DNS filter profiles, go to Security Profiles > DNS Filter.

Hover over the leftmost edge of the column heading to display the Configure Table icon, which you can use to select the columns to display or to reset all the columns to their default settings. You can also drag column headings to change their order.

The following options are available:

Create New

Create a DNS filter profile. See Create or edit a DNS filter profile.

Edit

Modify the selected DNS filter profile. See Create or edit a DNS filter profile.

Clone

Make a copy of the selected DNS filter profile.

Delete

Remove the selected DNS filter profile.

Search

Enter a search term to find in the DNS filter list.

Name

The name of the DNS filter profile.

Comments

An optional description of the DNS filter profile.

Ref.

Displays the number of times the object is referenced to other objects.

To view the location of the referenced object, select the number in Ref.; the Object Usage window opens and displays the various locations of the referenced object.
Previous
Next