webfilter : override
 
override
Use this command to configure FortiGuard-Web filter administrative overrides.
The administrative overrides are backed up with the main configuration and managed by the FortiManager system. The administrative overrides are not cleaned up when they expire and you can reuse these override entries by extending their expiry dates.
Syntax
config webfilter override
get webfilter override <override_int>
edit <override_int>
set expires <yyyy/mm/dd hh:mm:ss>
set initiator <user_name>
set ip <ipv4>
set ip6 <ipv6>
set new-profile <profile_str>
set old-profile <profile_str>
set scope {user | user‑group | ip | ip6}
set status {enable | disable}
set user <user_str>
set user-group <user_group_str>
end
Variable
Description
Default
<override_int>
The unique ID number of the override.
 
expires
<yyyy/mm/dd hh:mm:ss>
The date and time the override expires.
For example, the command to configure an expiry time of 6:45 p.m. on May 22, 2009 would be formatted this way:
set expires 2010/05/22 18:45:00
15 minutes after the override is created.
initiator <user_name>
The user who initiated the override rule. This field is get-only.
 
ip <ipv4>
When the scope is ip, enter the IP address for which the override rule applies.
0.0.0.0
ip6 <ipv6>
When the scope is ip6, enter the IP address for which the override rule applies.
::
new-profile <profile_str>
Specify the new web-filter profile to apply the override. new-profile and old-profile cannot be the same.
null
old-profile <profile_str>
Specify the web-filter profile for which the override applies.
null
scope {user | user‑group | ip | ip6}
The scope of the override rule.
user
status {enable | disable}
Enable or disable the override rule.
disable
user <user_str>
When the scope is user, the user for which the override rule applies.
 
user-group <user_group_str>
When the scope is user-group, enter the user group for which the override rule applies.