Fortinet FortiGate FortiGate-1000A Quick Start Manual
Fortinet fortigate fortigate-1000a: reference guide
Hide thumbs
Also See for FortiGate FortiGate-1000A:
- Administration manual (412 pages) ,
- Install manual (58 pages) ,
- Quick start manual (2 pages)
Advertisement
Quick Links
FortiGate-1000A / 1000AFA2
normal operating LED indicators
LED
State
Description
PWR
Green
The FortiGate unit is on.
The correct cable is connected to the copper 10/100/1000
Green
interface and the connected equipment has power.
Ports 1 to 10
Flashing
Network activity at this interface.
Amber
The interface is connected at 1000 Mbps.
The correct optical fiber patch cable is connected to the
Green
Ports A1 and
gigabit fiber interface.
A2 (1000AFA2)
Flashing
Network activity at the gigabit fiber interface.
1
Checking the package contents
Checking the package contents
Connector Type
Speed
Protocol Description
Ports 1 to 10 RJ-45
1000Base-T
Ethernet
Ports
A1 and A2
LC SFP 1000Base-SX Ethernet
(1000AFA2)
RS-232
CONSOLE
RJ-45
9600 bps
serial
2
Connecting the FortiGate unit
•
Mount the unit in a standard 19-inch rack. It requires 2 U of vertical space in the
rack.
•
Make sure the power is not connected or off before connecting the power and
network cables.
•
MAIN MENU appears when the unit is up and running.
If only one power supply is connected, an audible alarm sounds to indicate a failed
power supply. To stop this alarm, press the red alarm cancel button.
3
Planning the configuration
NAT/Route mode
In NAT/Route mode, the FortiGate unit is visible to the networks that it is connected to.
All of its interfaces are on different subnets. Each interface that is connected to a
network must be configured with an IP address that is valid for that network.
You would typically use NAT/Route mode when the FortiGate unit is deployed as a
gateway between private and public networks. In its default NAT/Route mode
configuration, the unit functions as a firewall. Firewall policies control communications
through the FortiGate unit. No traffic can pass through the FortiGate unit until you add
firewall policies.
Port 1
204.23.1.5
Internet
NAT mode policies controlling
In NAT/Route mode, firewall policies can operate in NAT mode or in Route mode. In
NAT mode, the FortiGate unit performs network address translation before IP packets
are sent to the destination network. In route mode, no translation takes place.
Refer to the Documentation CD-ROM for information on how to control traffic, and how to configure HA, antivirus protection, Web content filtering, Spam filtering, intrusion
prevention (IPS), and virtual private networking (VPN).
4
Choosing a configuration tool
and the DNS server addresses. To configure advanced settings, see the online help
and Documentation CD-ROM.
Requirements:
•
An Ethernet connection between the FortiGate unit and a management computer.
•
Internet Explorer version 6.0 or higher on the management computer.
Copper gigabit connection to 10/100/1000 copper
networks.
Multimode fiber optic connections to gigabit optical
networks for small packet performance required for
voice, video and other multimedia streaming
applications.
Serial connection to the command line interface.
Internal network
FortiGate-1000A Unit
Port 3
in NAT/Route mode
192.168.1.99
Port 4
DMZ network
10.10.10.1
traffic between internal and
external networks.
Web-based manager and
Setup Wizard
Using the Setup Wizard you can configure basic
configuration settings by stepping through the
wizard pages and filling in the information required.
The FortiGate web-based manager is an easy to
use management tool.
Use it to configure the administrator password,
interface addresses, the default gateway address,
FortiGate-1000A / 1000AFA2
© Copyright 2005 Fortinet Incorporated. All rights reserved.
Trademarks
Products mentioned in this document are trademarks or registered trademarks of their respective holders.
Regulatory Compliance
FCC Class A Part 15 CSA/CUS
16 November 2005
For technical support please visit http://www.fortinet.com.
Check that the package contents are complete. FortiGate-1000AFA2 shown.
Management
Modem Port
Connect the FortiGate-1000A / 1000AFA2 unit to a power outlet and to the internal and external
networks. The FortiGate-1000AFA2 is shown in the diagram.
Optional RJ-45 to DB-9 cable connects
to serial port on management computer
Straight-through Ethernet cables
connect to the Internet or
other networks
Before beginning to configure the FortiGate-1000A or FortiGate-1000AFA2, you need to plan how
to integrate the unit into your network. Your configuration plan is dependent upon the operating
mode that you select: NAT/Route mode (the default) or Transparent mode.
Transparent mode
In Transparent mode, the FortiGate unit is invisible to the network. All of its interfaces
are on the same subnet. You only have to configure a management IP address so that
you can make configuration changes.
You would typically use the FortiGate unit in Transparent mode on a private network
behind an existing firewall or behind a router. In its default Transparent mode
configuration, the unit functions as a firewall. No traffic can pass through the FortiGate
unit until you add firewall policies.
public network
192.168.1.3
204.23.1.5
Internet
(firewall, router)
Route mode policies
controlling traffic between
internal networks.
You can connect up to eight network segments to the FortiGate unit to control traffic
10.10.10.2
between these network segments.
Choose between two different tools to configure the FortiGate unit.
Command Line Interface (CLI)
The CLI is a full-featured management tool.
Use it to configure the administrator password, the
interface addresses, the default gateway address,
and the DNS server addresses. To configure
advanced settings, see the FortiGate CLI
Reference Guide on the Documentation CD-ROM.
Requirements:
•
The serial connection between the FortiGate
unit and a management computer.
•
A terminal emulation application (HyperTerminal for Windows) on the management
computer.
QuickStart Guide
01-28011-0258-20051116
Serial Port
LCD
Front
CONSOLE
A1
Control
Buttons
Fiber-optic
Remote
Ports A1 and A2
1 to 10
(FortiGate-1000AFA2 only)
Interface
Back
Alarm
Cancel
Button
Power
Connections
CONSOLE
USB
A1
A2
Fiber optic cable connects
to internal network or Internet
FortiGate-1000A Unit
in Transparent mode
Gateway to
10.10.10.2
10.10.10.1
Management IP
Transparent mode policies
controlling traffic between
internal and external networks
CONSOLE
USB
A1
A2
USB (future)
Ethernet Cables:
Orange - Crossover
USB
Grey - Straight-through
A2
x2 SFP Transceivers
(FortiGate-1000AFA2 only)
RJ-45 to
DB-9 Serial Cable
Power Cable
Rack-Mount Brackets
Power
Supply
FortiGate-1000A / 1000AFA2
LEDs
QuickStart Guide
Copyright 2005 Fortinet Incorporated. All rights reserved.
Trademarks
Products mentioned in this document are trademarks.
Documentation
Power cables connect
to power outlets
Internal network
10.10.10.3
Advertisement
Related Manuals for Fortinet FortiGate FortiGate-1000A
Summary of Contents for Fortinet FortiGate FortiGate-1000A
-
Page 1: Quickstart Guide
An Ethernet connection between the FortiGate unit and a management computer. • Internet Explorer version 6.0 or higher on the management computer. FortiGate-1000A / 1000AFA2 © Copyright 2005 Fortinet Incorporated. All rights reserved. Trademarks Products mentioned in this document are trademarks or registered trademarks of their respective holders. Regulatory Compliance... -
Page 2: General Settings
Apply. To configure a Default Gateway 1. Go to Router > Static and select Edit icon for the static route. 2. Set Gateway to the Default Gateway IP address that you recorded above and select Note: If you change the IP address of Port 1 (NAT/Route mode) or management IP address (Transparent mode), you must use this address to reconnect to the web-based manager and Setup Wizard.