Transparent Mode; Preventing The Public Fortigate Interface From Responding To Ping Requests - Fortinet FortiGate FortiGate-200A Install Manual
Fortios 3.0 mr4
Hide thumbs
Also See for FortiGate FortiGate-200A:
- Administration manual (392 pages) ,
- Install manual (56 pages) ,
- Quick start manual (2 pages)
Table of Contents
Advertisement
Configuring the FortiGate unit
Transparent mode
Preventing the public FortiGate interface from responding to
ping requests
FortiGate-200A, FortiGate-300A, FortiGate-400A, and FortiGate-500A FortiOS 3.0 MR4 Install Guide
01-30004-0268-20070712
Preventing the public FortiGate interface from responding to ping requests
In Transparent mode, the FortiGate unit is invisible to the network. Similar to a
network bridge, all FortiGate interfaces must be on the same subnet. You only
have to configure a management IP address so that you can make configuration
changes. The management IP address is also used for antivirus and attack
definition updates.
You typically use the FortiGate unit in Transparent mode on a private network
behind an existing firewall or behind a router. The FortiGate unit performs firewall
functions, IPSec VPN, virus scanning, IPS web content filtering, and Spam
filtering.
You can connect network segments to the FortiGate unit to control traffic between
these network segments. Depending on the FortiGate unit, you can connect up to
seven network segments.
Table 12: Transparent mode network segments
FortiGate Unit
Internal Interface External
FortiGate-200A
4-port switch
FortiGate-300A
Port 2
FortiGate-400A
Port 2
FortiGate-500A
LAN
Note: If you are installing a HA cluster, Port 4 can connect to another FortiGate unit. For
example, a FortiGate-300A can connect to another FortiGate-300A through Port 4. This is
only available on the FortiGate-300A, FortiGate-400A and FortiGate-500A.
Figure 10: Transparent mode network connections for a FortiGate-500A.
Gateway to public network
204.23.1.5
Internet
Router
The factory default configuration of your FortiGate unit allows the default public
interface to respond to ping requests. The default public interface is also called
the default external interface, and is the interface of the FortiGate unit that is
usually connected to the Internet.
Interface
WAN1
Port 1
Port 1
Port 1
10.10.10.2
Port 1
10.10.10.1
Management IP
Transparent mode policies controlling
traffic between internal and external networks.
Other
WAN 2
DMZ1
DMZ2
Ports 3, 4, 5, 6
Ports 3, 4, 5, 6
Ports 2 to 6
Internal Network
LAN
10.10.10.3
33
Hide quick links:
Advertisement
Table of Contents
