How to block TikTok IP’s
On your firewall
TikTok has gained media attention for the last 2 years, for its popularity, and for the fact that it collects a huge amount of data on its users including location, videos watched, clipboard, operating system, and the list goes on
As long as you control the connection which users connect to TikTok, you can try to block access to the app at the DNS level, using a block list of IP’s and domains that are related to TikTok
This guide is focused on doing that on a FortiGate firewall, but the method should be similar using Popular routers https://amzn.to/3nKMiAm , and firewalls
Step 1 - get hold of TikTok domains and IP’s
TikTok uses different domains where it connects to when users log in, upload, or view videos. to cut that, you will need to google “block TikTok domains “
Step 2 — copy all the domains and paste them into a text file and save it
The file should be plain text with one IP address on each line
On our FortiGate firewall, we will use an external IP block list, in many other devices, you could probably enter the list manually, but here we will actually load our text file to a web server so that we could manage the list more easily as we may need to add more domains
Step 3 — Log into your FortiGate-security fabric — -fabric connectors . that is the place where we will connect to the list of TikTok IP’s
Once opened, click on the create new, and you will see the following page
There are different connectors, but we will choose the threat feeds connector at the bottom of the page and choose the IP address
Name your threat feed and Enter your text path
Once saved, you will see your first threat feed
Step 4 — let’s move to our DNS filter, which is located at the security profiles pane
Click and create a new DNS filter sensor and name it
Scroll down to the static domain filter part
Enable it
Press the + sign and choose the entries, your threat feed ( the one you created before in the fabric connectors)
Click OK and save it
On your DNS filter page, you will see your new filter
Let’s move to the final part, apply your DNS filter to your Policy
Step 5 — Move to policy and objects — -IPV4 policy
And click on the policy, you want to add the DNS filter, in my case it is the full access policy
Scroll down to the security profiles part
Enable the DNS filter and choose our Block TikTok Filter
Save your Policy, and you’re Done
I have made a short video, which shows the full process
My Fortigate Admin Pocket Guide Book https://amzn.to/3brDX1t
You can subscribe to my channel at youtube.com/fortitip or join my FortiGate courses at https://www.udemy.com/course/fortigate-admin-crash-course/?referralCode=0B534DCF7A6D8BD3417E
