1. Manuals
  2. Brands
  3. Fortinet Manuals
  4. Firewall
  5. FortiGate FortiGate-50R
  6. Installation and configuration manual

Default Firewall Configuration; Addresses - Fortinet FortiGate FortiGate-50R Installation And Configuration Manual

Antivirus firewall
Hide thumbs
Table of Contents

Advertisement

Default firewall configuration

Default firewall configuration

Addresses

114
Firewall policies control connections between interfaces. By default, the users on your
internal network can connect through the FortiGate unit to the Internet. The firewall
blocks all other connections.
The firewall is configured with a default policy that matches any connection request
received from the internal network and instructs the firewall to forward the connection
to the Internet.
The default policy also applies virus scanning to all HTTP, FTP, SMTP, POP3, and
IMAP traffic matched by the policy. The policy applies virus scanning because the
Antivirus & Web Filter option is selected and the Content profile is set to Scan. For
more information about content profiles, see
Figure 4: Default firewall policy
Addresses
Services
Schedules
Content profiles
Add policies to control connections between FortiGate interfaces and between the
networks connected to these interfaces. To add policies between interfaces, the
interfaces must include addresses. By default the FortiGate unit is configured with two
firewall addresses:
Internal_All, added to the internal interface, this address matches all addresses on
the internal network.
External_All, added to the external interface, this address matches all addresses
on the external network.
The firewall uses these addresses to match the source and destination addresses of
packets received by the firewall. The default policy matches all connections from the
internal network because it includes the Internal_All address. The default policy also
matches all connections to the external network because it includes the External_All
address.
You can add more addresses to each interface to improve the control you have over
connections through the firewall. For more information about firewall addresses, see
"Addresses" on page
122.
You can also add firewall policies that perform network address translation (NAT). To
use NAT to translate destination addresses, you must add virtual IPs. Virtual IPs map
addresses on one network to a translated address on another network. For more
information about Virtual IPs, see
"Content profiles" on page
"Virtual IPs" on page
131.
Firewall configuration
140.
Fortinet Inc.

Advertisement

Table of Contents
loading

Related Manuals for Fortinet FortiGate FortiGate-50R

Related Content for Fortinet FortiGate FortiGate-50R

This manual is also suitable for:

Fortigate 50r

Table of Contents