Sign In
Upload
Manuals
Brands
Fortinet Manuals
Firewall
FortiGate 60R
Fortinet FortiGate 60R Manuals
Manuals and User Guides for Fortinet FortiGate 60R. We have
1
Fortinet FortiGate 60R manual available for free PDF download: Installation And Configuration Manual
Fortinet FortiGate 60R Installation And Configuration Manual (270 pages)
Antivirus Firewall
Brand:
Fortinet
| Category:
Firewall
| Size: 4.38 MB
Table of Contents
Configuration Guide
1
Table of Contents
3
Introduction
13
Antivirus Protection
13
Web Content Filtering
14
Email Filtering
14
Firewall
15
Nat/Route Mode
15
Transparent Mode
16
Network Intrusion Detection
16
Vpn
16
Secure Installation, Configuration, and Management
17
Web-Based Manager
17
Command Line Interface
18
Logging and Reporting
19
What's New in Version 2.50
19
System Administration
19
Firewall
20
Users and Authentication
20
Vpn
20
Nids
21
Antivirus
21
Web Filter
21
Email Filter
21
Logging and Reporting
21
About this Document
22
Document Conventions
23
Fortinet Documentation
24
Comments on Fortinet Technical Documentation
24
Customer Service and Technical Support
25
Getting Started
27
Package Contents
28
Mounting
28
Powering on
29
Connecting to the Web-Based Manager
30
Connecting to the Command Line Interface (CLI)
31
Factory Default Fortigate Configuration Settings
31
Factory Default DHCP Configuration
32
Factory Default Nat/Route Mode Network Configuration
33
Factory Default Transparent Mode Network Configuration
33
Factory Default Firewall Configuration
34
Factory Default Content Profiles
35
Planning Your Fortigate Configuration
37
Nat/Route Mode
37
Transparent Mode
38
Configuration Options
39
Fortigate Model Maximum Values Matrix
40
Next Steps
41
Nat/Route Mode Installation
43
Installing the Fortigate Unit Using the Default Configuration
43
Changing the Default Configuration
44
Preparing to Configure Nat/Route Mode
44
Advanced Nat/Route Mode Settings
45
DMZ Interface
45
Using the Setup Wizard
46
Starting the Setup Wizard
46
Reconnecting to the Web-Based Manager
46
Using the Command Line Interface
46
Configuring the Fortigate Unit to Operate in Nat/Route Mode
46
Connecting the Fortigate Unit to Your Networks
48
Configuring Your Networks
49
Completing the Configuration
50
Configuring the DMZ Interface
50
Configuring the WAN2 Interface
50
Setting the Date and Time
50
Changing Antivirus Protection
50
Registering Your Fortigate
51
Configuring Virus and Attack Definition Updates
51
Configuration Example: Multiple Connections to the Internet
51
Configuring Ping Servers
52
Destination Based Routing Examples
53
Load Sharing
54
Policy Routing Examples
56
Firewall Policy Example
57
Transparent Mode Installation
59
Preparing to Configure Transparent Mode
59
Using the Setup Wizard
60
Changing to Transparent Mode
60
Starting the Setup Wizard
60
Reconnecting to the Web-Based Manager
60
Using the Command Line Interface
61
Changing to Transparent Mode
61
Configuring the Transparent Mode Management IP Address
61
Configure the Transparent Mode Default Gateway
61
Connecting the Fortigate Unit to Your Networks
62
Completing the Configuration
63
Setting the Date and Time
63
Enabling Antivirus Protection
63
Registering Your Fortigate
63
Configuring Virus and Attack Definition Updates
64
Transparent Mode Configuration Examples
64
Default Routes and Static Routes
64
Example Default Route to an External Network
65
Example Static Route to an External Destination
66
General Configuration Steps
67
Example Static Route to an Internal Destination
69
System Status
71
Changing the Fortigate Host Name
72
Changing the Fortigate Firmware
72
Upgrade to a New Firmware Version
73
Revert to a Previous Firmware Version
74
Reverting to a Previous Firmware Version Using the Cli
75
Install a Firmware Image from a System Reboot Using the CLI
77
Test a New Firmware Image before Installing It
79
Manual Virus Definition Updates
81
Manual Attack Definition Updates
82
Displaying the Fortigate Serial Number
82
Displaying the Fortigate up Time
82
Backing up System Settings
82
Restoring System Settings
83
Restoring System Settings to Factory Defaults
83
Changing to Transparent Mode
83
Changing to Nat/Route Mode
84
Restarting the Fortigate Unit
84
Shutting down the Fortigate Unit
84
System Status
85
Viewing CPU and Memory Status
85
Viewing Sessions and Network Status
86
Viewing Virus and Intrusions Status
87
Session List
88
Virus and Attack Definitions Updates and Registration
89
Updating Antivirus and Attack Definitions
89
Connecting to the Fortiresponse Distribution Network
90
Configuring Scheduled Updates
91
Configuring Update Logging
92
Adding an Override Server
93
Manually Updating Antivirus and Attack Definitions
93
Configuring Push Updates
93
Push Updates through a NAT Device
94
Scheduled Updates through a Proxy Server
98
Registering Fortigate Units
99
Forticare Service Contracts
99
Registering the Fortigate Unit
100
Updating Registration Information
102
Recovering a Lost Fortinet Support Password
102
Viewing the List of Registered Fortigate Units
102
Registering a New Fortigate Unit
103
Adding or Changing a Forticare Support Contract Number
103
Changing Your Fortinet Support Password
104
Changing Your Contact Information or Security Question
104
Downloading Virus and Attack Definitions Updates
104
Registering a Fortigate Unit after an RMA
105
Network Configuration
107
Configuring Interfaces
107
Viewing the Interface List
108
Bringing up an Interface
108
Changing an Interface Static IP Address
108
Adding a Secondary IP Address to an Interface
108
Adding a Ping Server to an Interface
109
Controlling Management Access to an Interface
109
Configuring Traffic Logging for Connections to an Interface
110
Configuring the Wan1 and Wan2 Interfaces with a Static IP Address
110
Configuring the Wan1 or Wan2 Interfaces for DHCP
110
Configuring the Wan1 and Wan2 Interfaces for Pppoe
111
Changing the Wan1 and Wan2 Interface MTU Size to Improve Network Performance
111
Configuring the Management Interface (Transparent Mode)
112
Adding DNS Server IP Addresses
113
Configuring Routing
113
Adding a Default Route
114
Adding Destination-Based Routes to the Routing Table
114
Adding Routes in Transparent Mode
115
Configuring the Routing Table
116
Policy Routing
116
Providing DHCP Services to Your Internal Network
117
RIP Configuration
119
RIP Settings
120
Configuring RIP for Fortigate Interfaces
122
Adding RIP Neighbors
123
Adding RIP Filters
124
Adding a Single RIP Filter
124
Adding a RIP Filter List
125
Adding a Neighbors Filter
126
Adding a Routes Filter
126
System Configuration
127
Setting System Date and Time
127
Changing Web-Based Manager Options
128
Adding and Editing Administrator Accounts
130
Adding New Administrator Accounts
130
Editing Administrator Accounts
131
Configuring SNMP
132
Configuring the Fortigate Unit for SNMP Monitoring
132
Configuring Fortigate SNMP Support
132
Fortigate Mibs
133
Fortigate Traps
134
Customizing Replacement Messages
134
Customizing Replacement Messages
135
Customizing Alert Emails
136
Firewall Configuration
139
Default Firewall Configuration
140
Interfaces
140
Addresses
140
Services
141
Schedules
141
Content Profiles
141
Adding Firewall Policies
142
Firewall Policy Options
143
Traffic Shaping
144
Configuring Policy Lists
147
Policy Matching in Detail
147
Changing the Order of Policies in a Policy List
147
Enabling and Disabling Policies
148
Addresses
148
Adding Addresses
149
Editing Addresses
150
Deleting Addresses
150
Organizing Addresses into Address Groups
150
Services
151
Predefined Services
151
Providing Access to Custom Services
154
Grouping Services
154
Schedules
155
Creating One-Time Schedules
155
Creating Recurring Schedules
156
Adding a Schedule to a Policy
157
Virtual Ips
158
Adding Static NAT Virtual Ips
158
Adding Port Forwarding Virtual Ips
159
Adding Policies with Virtual Ips
161
IP Pools
162
Adding an IP Pool
162
IP Pools for Firewall Policies that Use Fixed Ports
163
IP Pools and Dynamic NAT
163
IP/MAC Binding
164
Configuring IP/MAC Binding for Packets Going through the Firewall
164
Configuring IP/MAC Binding for Packets Going to the Firewall
165
Adding IP/MAC Addresses
165
Viewing the Dynamic IP/MAC List
166
Enabling IP/MAC Binding
166
Content Profiles
167
Default Content Profiles
168
Adding a Content Profile
168
Adding a Content Profile to a Policy
169
Users and Authentication
171
Setting Authentication Timeout
172
Adding User Names and Configuring Authentication
172
Deleting User Names from the Internal Database
173
Configuring RADIUS Support
174
Adding RADIUS Servers
174
Deleting RADIUS Servers
174
Configuring LDAP Support
175
Adding LDAP Servers
175
Deleting LDAP Servers
176
Configuring User Groups
177
Adding User Groups
177
Deleting User Groups
178
Ipsec VPN
179
Key Management
180
Manual Keys
180
Automatic Internet Key Exchange (Autoike) with Pre-Shared Keys or Certificates
180
Manual Key Ipsec Vpns
181
General Configuration Steps for a Manual Key VPN
181
Adding a Manual Key VPN Tunnel
181
Autoike Ipsec Vpns
183
General Configuration Steps for an Autoike VPN
183
Adding a Phase 1 Configuration for an Autoike VPN
183
Adding a Phase 2 Configuration for an Autoike VPN
187
Managing Digital Certificates
189
Obtaining a Signed Local Certificate
189
Obtaining a CA Certificate
193
Configuring Encrypt Policies
194
Adding a Source Address
195
Adding a Destination Address
195
Adding an Encrypt Policy
195
Ipsec VPN Concentrators
197
VPN Concentrator (Hub) General Configuration Steps
197
Adding a VPN Concentrator
199
VPN Spoke General Configuration Steps
200
Redundant Ipsec Vpns
201
Configuring Redundant Ipsec VPN
201
Monitoring and Troubleshooting Vpns
203
Viewing VPN Tunnel Status
203
Viewing Dialup VPN Connection Status
203
Testing a VPN
204
PPTP and L2TP VPN
205
Configuring PPTP
205
Configuring the Fortigate Unit as a PPTP Gateway
206
Configuring a Windows 98 Client for PPTP
208
Configuring a Windows 2000 Client for PPTP
209
Configuring a Windows XP Client for PPTP
210
Configuring L2TP
211
Configuring the Fortigate Unit as a L2TP Gateway
212
Configuring a Windows 2000 Client for L2TP
215
Configuring a Windows XP Client for L2TP
216
Network Intrusion Detection System (NIDS)
219
Detecting Attacks
219
Selecting the Interfaces to Monitor
220
Disabling the NIDS
220
Configuring Checksum Verification
220
Viewing the Signature List
221
Viewing Attack Descriptions
221
Enabling and Disabling NIDS Attack Signatures
222
Adding User-Defined Signatures
222
Preventing Attacks
223
Enabling NIDS Attack Prevention
223
Enabling NIDS Attack Prevention Signatures
224
Setting Signature Threshold Values
224
Configuring Synflood Signature Values
226
Logging Attacks
226
Logging Attack Messages to the Attack Log
226
Reducing the Number of NIDS Attack Log and Email Messages
227
Antivirus Protection
229
General Configuration Steps
229
Antivirus Scanning
230
File Blocking
231
Blocking Files in Firewall Traffic
231
Adding File Patterns to Block
231
Blocking Oversized Files and Emails
232
Configuring Limits for Oversized Files and Email
232
Exempting Fragmented Email from Blocking
232
Viewing the Virus List
232
Web Filtering
233
General Configuration Steps
233
Content Blocking
234
Adding Words and Phrases to the Banned Word List
234
URL Blocking
235
Using the Fortigate Web Filter
235
Using the Cerberian Web Filter
238
Script Filtering
240
Enabling the Script Filter
240
Selecting Script Filter Options
240
Exempt URL List
241
Adding Urls to the Exempt URL List
241
Email Filter
243
General Configuration Steps
243
Email Banned Word List
244
Adding Words and Phrases to the Banned Word List
244
Email Block List
245
Adding Address Patterns to the Email Block List
245
Email Exempt List
245
Adding Address Patterns to the Email Exempt List
246
Adding a Subject Tag
246
Logging and Reporting
247
Recording Logs
247
Recording Logs on a Remote Computer
248
Recording Logs on a Netiq Webtrends Server
248
Recording Logs in System Memory
249
Filtering Log Messages
249
Configuring Traffic Logging
251
Enabling Traffic Logging
251
Configuring Traffic Filter Settings
252
Adding Traffic Filter Entries
252
Viewing Logs Saved to Memory
253
Viewing Logs
253
Searching Logs
254
Configuring Alert Email
254
Adding Alert Email Addresses
254
Testing Alert Email
255
Enabling Alert Email
255
Glossary
257
Index
261
Advertisement
Advertisement
Related Products
Fortinet FortiWiFi 60
Fortinet FortiWiFi 60CX-ADSL-A
Fortinet FortiDDoS 600B
Fortinet FortiGate 60C-SFP
Fortinet FortiGate 60C-LENC
Fortinet FortiGate 100A
Fortinet FortiGate 224B
Fortinet FortiGate 3600A
Fortinet FortiGate 5001A-DW
Fortinet FortiGate 5001A-SW
Fortinet Categories
Firewall
Network Hardware
Wireless Access Point
Telephone
Switch
More Fortinet Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL