Internet Browsing Configuration - Fortinet FortiGate Series Administration Manual
Hide thumbs
Also See for FortiGate Series:
- Administration manual (60 pages) ,
- Install manual (51 pages) ,
- Quick start manual (14 pages)
Table of Contents
Advertisement
Internet browsing configuration
Internet browsing configuration
624
Encryption Key
Enter an encryption key appropriate to the encryption algorithm:
•
for DES, type a 16-character hexadecimal number (0-9, a-f).
•
for 3DES, type a 48-character hexadecimal number (0-9, a-f) separated
into three segments of 16 characters.
•
for AES128, type a 32-character hexadecimal number (0-9, a-f) separated
into two segments of 16 characters.
•
for AES192, type a 48-character hexadecimal number (0-9, a-f) separated
into three segments of 16 characters.
•
for AES256, type a 64-character hexadecimal number (0-9, a-f) separated
into four segments of 16 characters.
Authentication
Select one of the following message digests:
Algorithm
MD5 — Message Digest 5 algorithm, which produces a 128-bit message
digest.
SHA1 — Secure Hash Algorithm 1, which produces a 160-bit message digest.
SHA256 — Secure Hash Algorithm 2, which produces a 256-bit message
digest.
Note: The Algorithms for encryption and authentication cannot both be NULL.
Authentication
Enter an authentication key appropriate to the authentication algorithm:
Key
•
for MD5, type a 32-character hexadecimal number separated into two
segments of 16 characters.
•
for SHA1, type a 40-character hexadecimal number separated into two
segments of 16 characters and a third segment of 8 characters.
•
for SHA256, type a 64-character hexadecimal number separated into four
segments of 16 characters.
Digits can be 0 to 9, and a to f.
IPSec Interface
Create a virtual interface for the local end of the VPN tunnel. Select this check
box to create a route-based VPN, clear it to create a policy-based VPN.
Mode
This is available only in NAT/Route mode.
By using appropriate firewall policies, you can enable VPN users to browse the Internet
through the FortiGate unit. The required policies are different for policy-based and route-
based VPNs. For more information, see
To create a policy-based VPN Internet browsing configuration
1 Go to Firewall > Policy.
2 Select Create New and enter the following information
Source Interface/Zone
Source Address Name
Destination Interface/Zone
Destination Address Name
Action
VPN Tunnel
Inbound NAT
3 Configure other settings as required.
4 Select OK.
To configure a route-based VPN Internet browsing configuration
1 Go to Firewall > Policy.
"Configuring firewall policies" on page
Select the FortiGate unit public interface.
Select All.
Select the FortiGate unit public interface.
Select the remote network address name.
Select IPSEC.
Select the tunnel that provides access to the private network
behind the FortiGate unit.
Select the check box.
FortiGate Version 4.0 MR1 Administration Guide
IPSec VPN
391.
01-410-89802-20090903
http://docs.fortinet.com/
•
Feedback
Advertisement
Table of Contents
