Firewall policy examples
230
3
Select OK
4
Select Create New and enter or select the following settings for Home_User_2:
Interface / Zone
Address Name
Schedule
Service
Action
VPN Tunnel
Allow Inbound
Allow outbound
Inbound NAT
Outbound NAT
Protection Profile
5
Select OK
Figure 128:SOHO network topology with FortiGate-100
The proposed network is based around a ForitGate 100A unit. The 15 internal
computers are behind the FortiGate unit. They now access the email and web
servers in a DMZ, which is also behind the FortiGate unit. All home based
employees now access the office network through the FortiGate unit via VPN
tunnels.
Source: internal
Destination: wan1
Source:
Destination: All
CompanyA_network
Always
ANY
IPSEC
Home2_Tunnel
yes
yes
yes
no
Enable and select standard_profile
FortiGate Version 3.0 MR4 Administration Guide
Firewall Policy
01-30004-0203-20070102