[Legacy Content] This page contains very old information, which might not be valid anymore, they are only kept here for legacy purposes.
if you have any inquiries, feel free to contact me! Click here
Bypassing FortiGuard
Created: Monday, 04 November 2013 Written by Ehab Eldeeb
Bypassing FortiNet's FortiGuard Web Filtering Service
Some schools, colleges, or offices use FortiGuard system to block some
certain sites for the users using their networks..
In this article we will learn how to bypass this service :)
Let's get to know more about FortiGuard at first, then we will learn how to bypass it with many
alternatives
(Some of these methods may not work .. try each of them till it works for you)
First thing, FortiGuard filters those stuff: http://www.fortiguard.com/static/webfiltering.html
Bypassing Methods
How it works?
The diagram below shows how it works
Simply as shown with numbers:
- You Request a website through your browser
- Your request passes through FortiGate (let's call it the router)
- The request is then passed to the rating server
- The request is analyzed in the rating server, if it's okay, the website will load
if it's blocked by the system, you will be shown a warning that you are blocked by FortiGuard - Request goes back to the router, then to the client (You)
That's the system in a nutshell :)
Use at your own risk!
I shall not be held responsible for anyone (except myself) using these methods to bypass a web filtering service.
How to bypass it?
There are many methods to bypass this system
1- For Smart Phones, simply use Opera Mini .. it will work right away :)
2- For laptop/PC there are some available alternatives (Some of them are blocked as FortiGuard updates itself)
Method 0
Ask your provider to remove FortiGuard filtering service :D
This is an illogical method though and will 100% not work
if they would remove it, they wouldn't have purchased it in the first place..
Method 1
(Tested and working as of today [November 4, 2013] in AAST)
Using AOL Proxy Service
AOL Provides a nice Proxy service wich is 100% free!
Method 2
Use google translate to translate the requested content to another language..
- The requested page is routed from google servers
Note: this method is blocked by FortiGuard, might work for other filtering services
Method 3
Use a web proxy right from your browser
example: http://www.webproxy.net/
[This method will 90% not work, since the domain itself is probably blocked in the FortiGuard settings]
Creating your own proxy server will mostly let you pass since your domain is unknown to fortiguard [See Method 10]
It's worth a try anyway, here's a list of some web-proxy sites
newipnow.com
webproxy.net
proxify.com
proxfree.com
incloak.com
hidedoor.com
proxyanonymizer.net
proxyserver.com
face-proxy.com
fb-proxy.net
Method 4
Use a browser extension called "Hide My Ass! Proxy Extension" [Works for FireFox and Google Chrome]
FireFox Version: https://addons.mozilla.org/en-US/firefox/addon/hide-my-ass-proxy-extension/
Chrome Version: https://chrome.google.com/webstore/detail/cmgnmcnlncejehjlnhaglpnoolgbflbd?hl=en
There are more extensions for Google Chrome:
ZenMate: https://chrome.google.com/webstore/detail/zenmate-for-google-chrome/fdcgdnkidjaadafnichfpabhfomcebme?hl=en
SpotFlux: https://chrome.google.com/webstore/detail/spotflux-safe-browsing/fcakbkpmlidimpglgiaclbpgbedlmpfl
There are many more, but those are the ones that are better-known :)
Method 5
Use Hot Spot Shield (I don't personally recommend this method since HSS has many advertisement pop-ups)
Download it from its original website: http://www.hotspotshield.com/
Method 6
Use Native Proxy settings in your browser
Here's a FREE IP:PORT Proxy list: http://hidemyass.com/proxy-list/
Method 7
Use TOR (The Onion Router) browser [The Anonymous browser]
Get it here: https://www.torproject.org/download/download
It's supported under many platforms including Windows, MAC, Linux, ... etc.
Note: tested by me, and will not work ... sadly!
Method 8
Use OpenVPN private tunnel
https://www.privatetunnel.com/index.php?referral=OPENVPN
Nice Free Proxy Application (Safe IP)
Method 9
SSH Tunneling should work (Search for a free one)
There's TorVPN which provides 1 month of free SSH service
[ search by yourself :) ]
** Method 10 **
This method will need some extra experience (Tested by me, Works 100% in AAST)
[ Tested in Room GS202 ^_^ ]
Related to Method 3
Setup your own proxy server using a PHP Proxy Script called (PHProxy) or (Glype)
All you have to do is to upload the proxy script to your web-host, and use it as your very own proxy :)
You can setup WAMP Server at your home and leave your computer on .. or you can find a Cheap/Free Web-Host to host the script there..
--- User Suggestions
Those methods are untested. They are suggested by the visitors, but untested by me.
You can perform a quick google search to test those out .. at your own risk :)
- "foxfi"
- "Ultrasurf" works great, but it's limited to 3 days trial
- "Psiphon" VPN works on android only
More methods
If you have any other bypassing methods, it will be very appreciated if you share it with us!
I will also update this article as I get to know any other methods to bypass FortiGuard :)
Challenge
I hereby challenge the AAST FortiGuard system to prevent me from using the internet
Anyway I'll use a portable WiFi Hotspot from my smartphone :D
Update: 12/12/2013
Actually, the only method to prevent bypassing FortiGuard is using "WhiteList" filtering
instead of "BlackList" filtering..
And it seems like AAST has taken action .. good job :)
I'll still use my portable WiFi Hotspot
The methods stated above should work for any web-filter using black-list method, So I'm keeping this thread onsite.