Transparent Mode; Configuration Options - Fortinet FortiGate 50A Installation And Configuration Manual

Fortinet fortigate installation and configuration guide

Hide thumbs Also See for FortiGate 50A:

Installation manual (52 pages)

Installation manual (44 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

Table of Contents

Planning the FortiGate configuration

Transparent mode

Configuration options

You typically use NAT/Route mode when the FortiGate unit is operating as a gateway

between private and public networks. In this configuration, you would create NAT

mode policies to control traffic flowing between the internal, private network and the

external, public network (usually the Internet).

Figure 3: Example NAT/Route mode network configuration

Internet

In Transparent mode, the FortiGate unit is invisible to the network. Similar to a

network bridge, all FortiGate interfaces must be on the same subnet. You only have to

configure a management IP address so that you can make configuration changes.

The management IP address is also used for antivirus and attack definition updates.

You typically use the FortiGate unit in Transparent mode on a private network behind

an existing firewall or behind a router. The FortiGate unit performs firewall functions as

well as antivirus and content scanning but not VPN.

Figure 4: Example Transparent mode network configuration

Gateway to

public network

204.23.1.5

10.10.10.2

Internet

(firewall, router)

Once you have selected Transparent or NAT/Route mode operation, you can

complete the configuration plan and begin to configure the FortiGate unit.

You can use the web-based manager setup wizard or the command line interface

(CLI) for the basic configuration of the FortiGate unit.

Setup wizard

If you are configuring the FortiGate unit to operate in NAT/Route mode (the default),

the setup wizard prompts you to add the administration password and internal

interface address. The setup wizard also prompts you to choose either a manual

(static) or a dynamic (DHCP or PPPoE) address for the external interface. Using the

wizard, you can also add DNS server IP addresses and a default route for the external

interface.

FortiGate-50A Unit

in NAT/Route mode

External

204.23.1.5

PWR

STATUS

INTERNAL

LINK 100

NAT mode policies controlling

traffic between internal and

external networks.

FortiGate-50A Unit

in Transparent mode

PWR

STATUS

External

10.10.10.1

Management IP

Transparent mode policies

controlling traffic between

internal and external networks

Internal

192.168.1.99

Internal network

POWER

EXTERNAL

LINK 100

Internal network

INTERNAL

EXTERNAL

LINK 100

Internal

Getting started

192.168.1.3

10.10.10.3

Fortinet Inc.

Table of Contents

Show Quick Links

Quick Links:
Connecting to the Web-Based Manager

Hide quick links:

Table of Contents

Transparent Mode; Configuration Options - Fortinet FortiGate 50A Installation And Configuration Manual

Transparent mode

Configuration options

Hide quick links:

Related Manuals for Fortinet FortiGate 50A

Related Content for Fortinet FortiGate 50A

Table of Contents