I have two FQDN hosts : Instagram (*.instagram.com) and Facebook (*.facebook.com). These two FQDN hosts are added in an FQDN host group named Social Media.
A rule in "Traffic to WAN" is configured for LAN to WAN that rejects this specific FQDN Host group. while testing this rule policy tester shows the packets being rejected as expected. When I test it in the client system, only the instagram.com is blocked. Can't seem to figure out why?
Quote