Scribd
Upload
553 views8 pages

Fortigate Firewall How To Internet

This document provides instructions for connecting a LAN to the internet using a FortiGate firewall. It describes configuring two network interfaces - port 1 connected to the internal LAN and port 2 facing the external/internet network. Port 1 is configured with an internal static IP and DHCP server. Port 2 retrieves IP settings via DHCP. A policy rule is created to enable NAT and logging for traffic between the interfaces, allowing internal systems to access the internet. More support resources are provided.

Uploaded by

Kaushal Kishor
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
553 views8 pages

Fortigate Firewall How To Internet

This document provides instructions for connecting a LAN to the internet using a FortiGate firewall. It describes configuring two network interfaces - port 1 connected to the internal LAN and port 2 facing the external/internet network. Port 1 is configured with an internal static IP and DHCP server. Port 2 retrieves IP settings via DHCP. A policy rule is created to enable NAT and logging for traffic between the interfaces, allowing internal systems to access the internet. More support resources are provided.

Uploaded by

Kaushal Kishor
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 8

FORTIGATE FIREWALL HOW TO www.ipmax.

it
CONNECTING TO THE INTERNET
NETWORK SETUP External network to the
Internet

Firewall Port 2 bridged to


In the following, we will try to connect your the physical machine
network port
LAN to the Internet using a basic setup.
The same setup shown in the previous post
will be used: port 1 connected to the LAN and
FortiGate VM

port 2 facing to the Internet.


The configuration foresees the use of NAT, a Firewall port 1
configured on VMware
static IP address for the Internal Interface and LAN segment 1

a DHCP received one for the external interface.


The internal IP address will be:
LAN segment 1

192.168.255.1/24 Virtual machine with


Ethernet port on Vmware
LAN segment 1
CONNECTING TO THE INTERNET
Its a good practice to assign a meaningful label to each firewall
interface. In this example the Inside and Outside labels will
be used.
With your web browser open https://192.168.255.1, user admin
and no password.
Go to System > Network > Interfaces
Double click on port 1 and start to
configure it.
CONNECTING TO THE INTERNET -
CONTINUED
Follow the configuration
shown to the right.
Configure the Alias label
and enable the DHCP
server in order to assign IP
addresses dynamically
onto the LAN.
The interface alias will be
show on all menus and
will help you to recognize
it.
Save configuration and go
to port 2.
CONNECTING TO THE INTERNET -
CONTINUED
Follow the
configuration shown to
the right.
Configure the Alias
label and check
Retrieve default
gateway from server in
order to receive the
default gateway using
DHCP.
Check also Override
internal DNS to use
DNS servers retrieved
by DHCP.
CONNECTING TO THE INTERNET -
CONTINUED
Go to Policy > Policy > Policy and click
onto create new.
Follow the configuration shown to the
right.
Note that a network object has been
used to configure the source address.
A network object associates a subnet
address to an easy to remember
object: the object must be created
manually.
In particular, enable NAT between port
1 and port 2 and log all sessions.
When applied, this rule will enable
your PCs inside the internal LAN to
connect to the Internet.
MORE NEEDS?
See hints on www.ipmax.it
Or email us your questions to [email protected]
IPMAX
IPMAX is a Fortinet Partner in Italy.
IPMAX is the ideal partner for companies seeking quality in products and
services. IPMAX guarantees method and professionalism to support its
customers in selecting technologies with the best quality / price ratio, in the
design, installation, commissioning and operation.

IPMAX srl
Via Ponchielli, 4
20063 Cernusco sul Naviglio (MI) Italy
+39 02 9290 9171

You might also like