1. Manuals
  2. Brands
  3. Fortinet Manuals
  4. Firewall
  5. FortiGate FortiGate-5005-DIST
  6. Getting started

Nat/Route Mode - Fortinet FortiGate FortiGate-5005-DIST Getting Started

Fortinet fortigate fortigate-5005-dist: user guide
Hide thumbs Also See for FortiGate FortiGate-5005-DIST:
Table of Contents

Advertisement

Planning the configuration

NAT/Route mode

22
In NAT/Route mode, the FortiGate security system is visible to the networks that it
is connected to. Each interface connected to a network must be configured with
an IP address that is valid for that network. In many configurations, in NAT/Route
mode all of the FortiGate security system interfaces are on different networks, and
each network is on a separate subnet.
You would typically use NAT/Route mode when the FortiGate security system is
deployed as a gateway between private and public networks. In the default
NAT/Route mode configuration, the FortiGate security system functions as a
firewall. Firewall policies control communications through the FortiGate security
system. No traffic can pass through the FortiGate security system until you add
firewall policies.
In NAT/Route mode, firewall policies can operate in NAT mode or in Route mode.
In NAT mode, the FortiGate firewall performs network address translation before
IP packets are sent to the destination network. In Route mode, no translation
takes place.
Figure 7: Example FortiGate-5005-DIST system operating in NAT/Route mode
X2 (port1_X2)
204.23.1.5
NAT mode policies
controlling 10G traffic
between internal and
external networks.
Internet
FortiGate-5005-DIST
security system in
NAT/Route mode
ACT
USB
USB
7
8
LINK
1
2
3
4
5
6
5
ACT
LINK
CONSOLE
OOS
ACC
STATUS
IPM
ACT
USB
USB
7
8
LINK
4
1
2
3
4
5
6
ACT
LINK
CONSOLE
OOS
ACC
STATUS
IPM
ACT
USB
USB
7
8
LINK
1
2
3
4
5
6
3
ACT
LINK
CONSOLE
OOS
ACC
STATUS
IPM
ACT
USB
USB
7
8
LINK
1
2
3
4
5
6
2
ACT
LINK
POWER
CONSOLE
OOS
ACC
STATUS
IPM
DATA
CONTROL
X 1
X 2
1
5
9
13
1
5
9
13
1
MANAGEMENT
COM 1
COM 2
1
X 1
2
6
10
14
2
6
10
14
2
D
11
C
1/2
3/4
D15/D16
C15/C16
3
7
11
15
3
7
15
3
X 2
4
8
12
D
16
4
8
12
C
16
4
10/100/1000 MBPS ETHERNET ACTIVITY
STATUS
PAYLOAD OPERATION
IPM
SMC
5000SM
5050SAP
5000SM
SMC
10/100
10/100
link/Act
SERIAL
SERIAL
link/Act
2
10/100
10/100
1
link/Act
1
2
link/Act
X1 (port1_X1)
192.168.1.99
Internal
network
FortiGate-5005-DIST Security System Getting Started
Quick Configuration Guide
Management
interface (mng)
01-30000-0414-20070615

Advertisement

Table of Contents
loading

Related Manuals for Fortinet FortiGate FortiGate-5005-DIST

Related Content for Fortinet FortiGate FortiGate-5005-DIST

Table of Contents