Fortinet FortiGate Series Administration Manual page 402
Hide thumbs
Also See for FortiGate Series:
- Administration manual (60 pages) ,
- Install manual (51 pages) ,
- Quick start manual (14 pages)
Table of Contents
Advertisement
Configuring firewall policies
402
NAT
Fixed Port
Enable Identity Based
Policy
Add
Comments
To create an identity based firewall policy, select the Enable Identity Based Policy check
box. A table opens below the check box. Select Add. The New Authentication Rule dialog
opens (see
Figure
214).
Figure 214: New Authentication Rule
User Group
Available User Groups List of user groups available for inclusion in the firewall policy. To add
Selected User Groups List of user groups that are included in the firewall policy. To remove a
Enable or disable Network Address Translation (NAT) of the source
address and port of packets accepted by the policy. When NAT is
enabled, you can also configure Dynamic IP Pool and Fixed Port.
If you select a virtual IP as the Destination Address, but do not select
the NAT option, the FortiGate unit performs destination NAT (DNAT)
rather than full NAT. Source NAT (SNAT) is not performed.
Select Fixed Port to prevent NAT from translating the source port.
Select to configure a SSL-VPN firewall policy that requires
authentication.
Select to configure the valid authentication methods, user group
names, and services. For more information, see
page
666.
Add information about the policy. The maximum length is 63
characters.
a user group to the list, select the name and then select the Right
Arrow.
user group from the list, select the name and then select the Left
Arrow.
FortiGate Version 4.0 MR1 Administration Guide
Firewall Policy
"User Group" on
01-410-89802-20090903
http://docs.fortinet.com/
•
Feedback
Advertisement
Table of Contents
