Fortinet FortiGate-60M Quick Start Manual
Hide thumbs
Also See for FortiGate-60M:
- Administration manual (458 pages) ,
- Install manual (92 pages) ,
- Installation manual (77 pages)
Advertisement
Quick Links
FortiGate-60M LED Indicators
LED
State
Power
Green
Off
Status
Green
Off
Link
Green
(Internal
DMZ
Flashing Green
WAN1
Off
WAN2)
100
Green
(Internal
DMZ
WAN1
WAN2)
1
Checking the package contents
Checking the package contents
Connector Type
Speed
Internal
RJ-45
10/100Base-T Ethernet
WAN1 and 2 RJ-45
10/100Base_T Ethernet
DMZ
RJ-45
10/100Base-T Ethernet
CONSOLE
RJ-45
9600 bps
USB
USB
—
Phone cable RJ-11
—
2
Connecting the FortiGate-60M
•
Place the unit on a stable surface. It requires 1.5 inches
(3.75 cm) clearance above and on each side to allow for cooling.
•
Make sure the power switch on the back of the unit is turned off before connecting the
power and network cables.
•
The Status light flashes while the unit is starting up and turns off when the system is
up and running.
3
Planning the configuration
Quick configuration using the default settings
You can quickly set up your FortiGate unit for a home or small office using the web-
based manager and the default settings in NAT/Route mode.
All you need to do is set your network computers to use DHCP, access the web-based
manager, and configure the required settings for the WAN1 interface. You can also
configure DNS and a default route if needed. The FortiGate unit automatically assigns
IP addresses to up to 100 computers in the internal network.
1. Connect the FortiGate unit to the network.
2. Set the all the network computers to use DHCP to automatically obtain an IP
address.
The FortiGate internal interface acts as a DHCP server for the internal network and
assigns IP addresses to all computers in the range 192.168.1.110 –192.168.1.210.
3. From the management computer browse to https://192.168.1.99.
The FortiGate web-based manager appears.
4. Go to System > Network > Interface and select Edit for the WAN1 interface.
5. Select one of the following Addressing modes
•
Manual: enter a static IP address and netmask, select OK, and go to step 6
•
DHCP: to get an IP address from the ISP select DHCP and go to step 9
•
PPPoE: to get an IP address from the ISP select PPPoE and go to step 9
NAT/Route mode
In NAT/Route mode, the FortiGate-60M is visible to the networks that it is connected to.
All of its interfaces are on different subnets. You must configure the internal and WAN1
interfaces with IP addresses. Optionally, you can also configure the WAN2 and DMZ
interfaces.
You would typically use NAT/Route mode when the FortiGate-60M is deployed as a
gateway between private and public networks. In its default NAT/Route mode
configuration, the unit functions as a firewall. Firewall policies control communications
through the FortiGate-60M unit.
in NAT/Route mode
WAN1
204.23.1.5
Internet
NAT mode policies controlling
traffic between internal and
In NAT/Route mode, firewall policies can operate in NAT mode or in Route mode. In
NAT mode, the FortiGate-60M performs network address translation before IP packets
are sent to the destination network. In Route mode, no translation takes place. By
default, the unit has a single NAT mode policy that allows users on the internal network
to securely access and download content from the Internet. No other traffic is possible
until you have configured more policies.
Refer to the Documentation CD-ROM for information on how to control traffic, and how to configure HA, antivirus protection, Web content filtering, Spam filtering, intrusion
prevention (IPS), and virtual private networking (VPN).
Description
The FortiGate unit is powered on.
The FortiGate unit is powered off.
The FortiGate unit is starting up.
The FortiGate unit is running normally.
The correct cable is in use and the connected
equipment has power.
Network activity at this interface.
No link established.
The interface is connected at 100 Mbps.
Protocol Description
4-port switch connection to up to four devices or the internal network.
Redundant connections to the Internet.
Optional connection to a DMZ network or to other FortiGate -60M units
for high availability (HA).
RS-232
Optional connection to the management computer.
serial
Provides access to the command line interface (CLI).
USB
Optional connection to a modem for standalone or backup operation.
Phone line for internal modem.
Internal network
192.168.1.3
FortiGate-60M Unit
Internal
192.168.1.99
Route mode policies
INTERNAL
controlling traffic between
PWR
STATUS
1
2
3
4
DMZ
WAN1
WAN2
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
internal networks.
M
DMZ
DMZ network
10.10.10.1
external networks.
10.10.10.2
FortiGate-60M
PWR
QuickStart Guide
© Copyright 2004 Fortinet Incorporated. All rights reserved.
Trademarks
Products mentioned in this document are trademarks or registered trademarks of their respective holders.
Regulatory Compliance
FCC Class A Part 15 CSA/CUS
03 November 2004
For technical support please visit http://www.fortinet.com.
Check that the package contents are complete.
Power
Connection
Modem Phone
Connection
Connect the FortiGate-60M unit to a power outlet and to the internal and external networks.
Power cable connects to power supply
Modem phone line connection
DC+12V
Modem
Console
Optional redundant connection to Internet
Straight-through Ethernet cable connects
to Internet (public switch, router or modem)
Before configuring the FortiGate-60M, you need to plan how to integrate the unit into your
network. You can select NAT/Route mode (the default) or Transparent mode. In NAT/Route mode
you can also use the default settings to quickly configure the unit on your network.
6. Go to System > Network > DNS.
7. Select one of the following DNS settings
•
Obtain DNS server address automatically: select to get the DNS addresses
from the ISP, select Apply
•
Use the following DNS server addresses: select and enter the DNS server
addresses given to you by the ISP, select Apply
8. Go to Router > Static, select Create New, enter the default gateway address and
select OK.
Network configuration is complete. Proceed to part 7 of this Quick Start Guide.
9. Select Retrieve default gateway from server and Override internal DNS options if
your ISP supports them, select OK, and proceed to part 7 of this Quick Start Guide.
Go to step 6 if you are not selecting these options.
Internet
WAN1 interface
Configure Manual IP, DHCP, or
PPPoE addressing
Transparent mode
In Transparent mode, the FortiGate-60M is invisible to the network. All of its interfaces
are on the same subnet. You only have to configure a management IP address so that
you can make configuration changes.
You would typically use the FortiGate-60M in Transparent mode on a private network
behind an existing firewall or behind a router. In its default Transparent mode
configuration, the unit functions as a firewall. By default, the unit has a single firewall
policy that allows users on the internal network segment to connect to the WAN1
network segment. No other traffic is possible until you have configured more policies.
Gateway to
public network
10.10.10.2
204.23.1.5
(firewall, router)
Internet
You can connect up to four network segments to the FortiGate-60M unit to control traffic
between these network segments.
INTERNAL
STATUS
1
2
3
4
DMZ
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
01-28005-0110-20041103
Front
INTERNAL
PWR
STATUS
1
2
3
4
DMZ
WAN1
WAN2
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
M
Power
Status
Internal
DMZ
WAN 1,2
LED
LED
Interface
Interface
Interface
Back
4
3
2
1
DC+12V
WAN2
WAN1
DMZ
Internal
Modem
Console
USB
DMZ
WAN2
USB
WAN1
Internal Interface,
(future)
switch connectors
1,2,3,4
Serial Port
Optional RJ-45 to DB-9 serial cable connects to management computer
4
3
2
1
USB
WAN2
WAN1
DMZ
Internal
USB
(future)
Straight-through
Ethernet cables connect
to computers on internal network
Optional connection to DMZ network
FortiGate-60M Unit
INTERNAL
PWR
STATUS
1
2
3
4
DMZ
WAN1
WAN2
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
M
Internal interface
192.168.1.99
DHCP server and DNS server
for the internal network
FortiGate-60M Unit
in Transparent mode
10.10.10.1
INTERNAL
Management IP
PWR
STATUS
1
2
3
4
DMZ
WAN1
WAN2
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
WAN1
M
Internal
Transparent mode policies
controlling traffic between
internal and external networks
WAN1
WAN2
LINK 100
LINK 100
Ethernet Cables:
Orange - Crossover
Grey - Straight-through
RJ-45 to
DB-9 Serial Cable
RJ-11 Phone cable
Power Cable Power Supply
FortiGate-60
INTERNAL
USER MANUAL
PWR
STATUS
1
2
3
4
DMZ
WAN1
WAN2
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
LINK 100
QuickStart Guide
Copyright 2003 Fortinet Incorporated. All rights reserved.
Trademarks
Products mentioned in this document are trademarks.
Documentation
Internal network
Obtain IP address and
DNS server IP address
automatically
Internal network
10.10.10.3
Advertisement
Related Manuals for Fortinet FortiGate-60M
Summary of Contents for Fortinet FortiGate-60M
-
Page 1: Checking The Package Contents
Documentation Serial Port Connecting the FortiGate-60M Connect the FortiGate-60M unit to a power outlet and to the internal and external networks. Power cable connects to power supply Modem phone line connection Optional RJ-45 to DB-9 serial cable connects to management computer •... -
Page 2: General Settings
4-port switch. Web-based manager 2. Configure the management computer to be on the same subnet as the internal interface of the FortiGate-60M. To do this, change the IP address of the management computer to 192.168.1.2 and the netmask to 255.255.255.0.