Scribd
Upload
480 views7 pages

How To Setup FortiGate Firewall To Access The Internet

The document provides steps to configure a FortiGate firewall to allow internal network access to the internet. It involves configuring the WAN and internal interfaces, setting the default route, enabling NAT and session logging, and creating policies that allow restricted internet access for general users and unrestricted access for the administrator PC. The configuration is tested by accessing the internet from both the administrator PC and another internal PC.

Uploaded by

Ario Dhilla Hatta
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
480 views7 pages

How To Setup FortiGate Firewall To Access The Internet

The document provides steps to configure a FortiGate firewall to allow internal network access to the internet. It involves configuring the WAN and internal interfaces, setting the default route, enabling NAT and session logging, and creating policies that allow restricted internet access for general users and unrestricted access for the administrator PC. The configuration is tested by accessing the internet from both the administrator PC and another internal PC.

Uploaded by

Ario Dhilla Hatta
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 7

7/3/2019 How to Setup FortiGate Firewall To Access The Internet – Tech Encyclopedia


 Menu
Menu
Tech Encyclopedia

Knowledge is ammunition

Techencyclopedia in FortiGate Firewall August 13, 2017August 14, 2017 267 Words

How to Setup FortiGate Firewall To Access


The Internet

ddd

In this case NAT/Route mode is used which allows FortiGate to hide the IP addresses of the private
network using network address translation (NAT).

Login to the FortiGate’s web-based manager

https://techencyclopedia.wordpress.com/2017/08/13/how-to-setup-fortigate-firewall-to-access-the-internet/ 1/7
7/3/2019 How to Setup FortiGate Firewall To Access The Internet – Tech Encyclopedia

Configure the internal and WAN interfaces

Go to system –> Network –> Interfaces

Configure the WAN interface

Configure the internal interface

In this case DHCP is enabled

https://techencyclopedia.wordpress.com/2017/08/13/how-to-setup-fortigate-firewall-to-access-the-internet/ 2/7
7/3/2019 How to Setup FortiGate Firewall To Access The Internet – Tech Encyclopedia

In the MAC Address Access Control List assign the mac address and IP address of the administrator PC

Review the Configuration

Configure default route at

Router –> Static –> Static Routes

Set the Destination IP/Mask to 0.0.0.0/0.0.0.0, the Device to the Internet-facing interface, and the Gateway
to the gateway (or default route) provided by your ISP or to the next hop router, depending on your
network requirements.

https://techencyclopedia.wordpress.com/2017/08/13/how-to-setup-fortigate-firewall-to-access-the-internet/ 3/7
7/3/2019 How to Setup FortiGate Firewall To Access The Internet – Tech Encyclopedia

Review configuration

Configure DNS Se ing

you can keep the default if you want to

Configure Policies

Two policies are created in this scenario

1. General policy – restricted internet access

https://techencyclopedia.wordpress.com/2017/08/13/how-to-setup-fortigate-firewall-to-access-the-internet/ 4/7
7/3/2019 How to Setup FortiGate Firewall To Access The Internet – Tech Encyclopedia

2. Administrator PC policy – unrestricted internet access can be given

General Policy

Only HTTP, HTTPS, DNS services are allowed

Enable NAT and session logging

Administrator PC policy

Firstly you have to create a new address for admin PC at Firewall Objects –> Address

appropriate subnet number and the interface is configured

Review created address


https://techencyclopedia.wordpress.com/2017/08/13/how-to-setup-fortigate-firewall-to-access-the-internet/ 5/7
7/3/2019 How to Setup FortiGate Firewall To Access The Internet – Tech Encyclopedia

Then create the policy for admin PC. All the services are allowed in this case

Test the policy configuration by accessing internet using the admin PC and another PC in the network.
Monitor the counter changes in policies

https://techencyclopedia.wordpress.com/2017/08/13/how-to-setup-fortigate-firewall-to-access-the-internet/ 6/7
7/3/2019 How to Setup FortiGate Firewall To Access The Internet – Tech Encyclopedia

Advertisements

REPORT THIS AD

Blog at WordPress.com.

Menu

https://techencyclopedia.wordpress.com/2017/08/13/how-to-setup-fortigate-firewall-to-access-the-internet/ 7/7

You might also like