The FortiGate can recognize network traffic generated by a large number of applications. Application Control sensors specify what action to take with the application traffic. Application Control uses IPS protocol decoders that can analyze network traffic to detect application traffic, even if the traffic uses non-standard ports or protocols. Application control supports traffic detection using the HTTP protocol (versions 1.0, 1.1, and 2.0).
To configure the
FortiGate Application Control, go to Security Profiles > Application Control
> Create New.
Notice there are several default Application Control Profiles.
Type a Name: BLOCK_SOCIAL_MEDIA > under Social Media > select Block.
Click OK.
The next step is to apply the Application Control Profile in a Firewall Policy, go to Policy & Objects > Firewall Policy > select FG_LAN_INTERNET (Policy ID 1).
Go under Security Profiles.
Enable (toggle) Application Control > select BLOCK_SOCIAL_MEDIA > click OK.
I tried to access facebook.com from 172.16.1.100 (Windows 7 VM) but it only timed out. There was a Application Blocked error when I tried instagram.com and twitter.com.
To view Application Control logs, go to Log & Report > Application Control.
Notice the Application Name: Twitter and Facebook had an Action: block.
You can use the Add Filter to only display Action: block.
Select a log > click Details.
