1. Manuals
  2. Brands
  3. Fortinet Manuals
  4. Firewall
  5. FortiGate FortiGate-50R
  6. Installation and configuration manual

Changing The Order Of Policies In A Policy List; Enabling And Disabling Policies - Fortinet FortiGate FortiGate-50R Installation And Configuration Manual

Antivirus firewall
Hide thumbs
Table of Contents

Advertisement

Firewall configuration

Changing the order of policies in a policy list

Enabling and disabling policies

FortiGate-50R Installation and Configuration Guide
A policy that is an exception to the default policy, for example, a policy to block FTP
connections, must be placed above the default policy in the Int->Ext policy list. In this
example, all FTP connection attempts from the internal network would then match the
FTP policy and be blocked. Connection attempts for all other kinds of services would
not match with the FTP policy but they would match with the default policy. Therefore,
the firewall would still accept all other connections from the internal network.
Note: Policies that require authentication must be added to the policy list above matching
policies that do not; otherwise, the policy that does not require authentication is selected first.
1
Go to Firewall > Policy.
2
Select the policy list that you want to rearrange.
3
Choose a policy to move and select Move To
4
Type a number in the Move to field to specify where in the policy list to move the policy
and select OK.
You can enable and disable policies in the policy list to control whether the policy is
active or not. The FortiGate unit matches enabled policies but does not match
disabled policies.
Disabling a policy
Disable a policy to temporarily prevent the firewall from selecting the policy. Disabling
a policy does not stop active communications sessions that have been allowed by the
policy. To stop active communication sessions, see
1
Go to Firewall > Policy.
2
Select the policy list containing the policy to disable.
3
Clear the check box of the policy to disable.
Enabling a policy
Enable a policy that has been disabled so that the firewall can match connections with
the policy.
1
Go to Firewall > Policy.
2
Select the policy list containing the policy to enable.
3
Select the check box of the policy to enable.
Configuring policy lists
to change its order in the policy list.
"System status" on page
67.
121

Advertisement

Table of Contents
loading

Related Manuals for Fortinet FortiGate FortiGate-50R

Related Content for Fortinet FortiGate FortiGate-50R

This manual is also suitable for:

Fortigate 50r

Table of Contents