Table of Contents
Advertisement
Planning the configuration
Transparent mode
24
You would typically use NAT/Route mode when the FortiGate-5001C security system is
deployed as a gateway between private and public networks. In the default NAT/Route
mode configuration, the FortiGate-5001C security system functions as a firewall. Firewall
policies control communications through the FortiGate-5001C security system. No traffic
can pass through the FortiGate-5001C security system until you add firewall policies.
In NAT/Route mode, firewall policies can operate in NAT mode or in Route mode. In NAT
mode, the FortiGate firewall performs network address translation before IP packets are
sent to the destination network. In Route mode, no translation takes place.
Figure 7: Example FortiGate-5001C board operating in NAT/Route mode
In Transparent mode, the FortiGate-5001C security system is invisible to the network. All
of the FortiGate-5001C interfaces are connected to different segments of the same
network. In Transparent mode you only have to configure a management IP address so
that you can connect to the FortiGate-5001C security system to make configuration
changes and so the FortiGate-5001C security system can connect to external services
such as the FortiGuard Distribution Network (FDN).
You would typically deploy a FortiGate-5001C security system in Transparent mode on a
private network behind an existing firewall or behind a router. In the default Transparent
mode configuration, the FortiGate-5001C security system functions as a firewall. No
traffic can pass through the FortiGate-5001C security system until you add firewall
policies.
Internal
network
port1
192.168.1.2
port2
204.23.1.2
FortiGate-5001C
board in NAT/Route
mode
Quick Configuration Guide
FortiGate-5001C Security System Guide
01-400-181221-20121130
http://docs.fortinet.com/
Advertisement
Table of Contents
Need help?
Do you have a question about the FortiGate-5001C and is the answer not in the manual?