Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more ➡
Download
Standard view
Full view
of .
Add note
Save to My Library
Sync to mobile
Look up keyword or section
Like this
2Activity
×

Table Of Contents

Introduction
About FortiGate Antivirus Firewalls
Antivirus protection
Web content filtering
Spam filtering
Transparent mode
VLANs and virtual domains
Introduction Intrusion Prevention System (IPS)
Intrusion Prevention System (IPS)
High availability
Secure installation, configuration, and management
Command line interface
Document conventions
FortiGate documentation
Fortinet Knowledge Center
Comments on Fortinet technical documentation
Related documentation
FortiManager documentation
FortiClient documentation
FortiMail documentation
FortiLog documentation
Customer service and technical support
System status
Console access
Status
Viewing system status
Changing unit information
To change FortiGate host name
To update the firmware version
To update the antivirus definitions manually
To update the attack definitions manually
To change to Transparent mode
To change to NAT/Route mode
Session list
Changing the FortiGate firmware
Upgrading to a new firmware version
Upgrading the firmware using the web-based manager
Reverting to a previous firmware version
Installing firmware images from a system reboot using the CLI
Switching back to the default firmware image
System network
Interface
Interface settings
Configuring interfaces
To bring down an interface that is administratively up
To start up an interface that is administratively down
To add interfaces to a zone
To add an interface to a virtual domain
To change the static IP address of an interface
To configure an interface for DHCP
To configure an interface for PPPoE
To add a secondary IP address
To control administrative access to an interface
Zone
Zone settings
Management
Routing table (Transparent Mode)
Routing table list
Transparent mode route settings
VLAN overview
FortiGate units and VLANs
VLANs in NAT/Route mode
Rules for VLAN IDs
Rules for VLAN IP addresses
Adding VLAN subinterfaces
VLANs in Transparent mode
Transparent mode virtual domains and VLANs
Transparent mode VLAN list
Transparent mode VLAN settings
To add a VLAN subinterface in Transparent mode
FortiGate IPv6 support
System DHCP
Service
DHCP service settings
Server
DHCP server settings
Exclude range
DHCP exclude range settings
IP/MAC binding
System DHCP DHCP IP/MAC binding settings
DHCP IP/MAC binding settings
Dynamic IP
System config
System time
Options
HA
HA configuration
Standalone Mode
High Availability
Cluster Members
Override Master
Priorities of Heartbeat Device
Heartbeat device IP addresses
Table 5: Default heartbeat device configuration
Monitor priorities
Configuring an HA cluster
To configure a FortiGate unit for HA operation
To connect a FortiGate HA cluster
SNMP community
FortiGate MIBs
FortiGate traps
Fortinet MIB fields
Replacement messages
Replacement messages list
Changing replacement messages
FortiManager
System administration
Administrators
Administrators list
Administrators options
Access profiles
Access profile list
Access profile options
System maintenance
Backup and restore
Backing up and Restoring
Update center
Updating antivirus and attack definitions
To enable scheduled updates through a proxy server
Enabling push updates
Enabling push updates through a NAT device
Support
Sending a bug report
Registering a FortiGate unit
To register a FortiGate unit
Shutdown
System virtual domain
Exclusive virtual domain properties System virtual domain
Virtual domain properties
Exclusive virtual domain properties
Shared configuration settings
Administration and management
Virtual domains
Adding a virtual domain
Selecting a virtual domain
Selecting a management virtual domain
To select a management virtual domain
To select a management virtual domain and add a management IP
Configuring virtual domains
Adding interfaces, VLAN subinterfaces, and zones to a virtual domain
To add physical interfaces to a virtual domain
To add VLAN subinterfaces to a virtual domain
To add zones to a virtual domain
Configuring routing for a virtual domain System virtual domain
Configuring routing for a virtual domain
Configuring firewall policies for a virtual domain
To add firewall policies to a virtual domain
To add firewall addresses to a virtual domain
To add IP pools to a virtual domain
To add Virtual IPs to a virtual domain
Configuring IPSec VPN for a virtual domain System virtual domain
Configuring IPSec VPN for a virtual domain
To configure VPN for a virtual domain
Router
Static
Router Static route list
Static route list
Static route options Router
Static route options
Router Policy route list
Policy
Policy route list
Policy route options Router
Policy route options
General
Networks list
Networks options
Interface list
Interface options
Distribute list
Distribute list options
Offset list
Offset list options
Router objects
Access list
New access list
New access list entry
Prefix list
New Prefix list
New prefix list entry
Route-map list
New Route-map Router
New Route-map
Router Route-map list entry
Route-map list entry
Key chain list
New key chain
Key chain list entry
Monitor
Routing monitor list
Router get router info ospf
CLI configuration
get router info ospf
get router info protocols
get router info rip
config router ospf
config virtual-link
config distribute-list
config neighbor
config network
config ospf-interface
config redistribute
config summary-address
Router config router static6
config router static6
Firewall
How policy matching works
Policy list
Policy options
Advanced policy options
Configuring firewall policies
Policy CLI configuration
Address
Address list
Address options
Configuring addresses
Address group list
Address group options
Configuring address groups
Predefined service list
Custom service list
Custom service options
ICMP custom service options
Configuring custom services
Service group list
Service group options
Configuring service groups
Schedule
One-time schedule list
One-time schedule options
Configuring one-time schedules
Recurring schedule list
Recurring schedule options
Configuring recurring schedules
Virtual IP
Virtual IP list
Virtual IP options
Configuring virtual IPs
IP pool
IP pool list
IP pool options
Configuring IP pools
Firewall IP Pools for firewall policies that use fixed ports
IP Pools for firewall policies that use fixed ports
IP pools and dynamic NAT
Protection profile
Protection profile list
Default protection profiles
Protection profile options
Configuring web category filtering options
Configuring protection profiles
Profile CLI configuration
Users and authentication
Setting authentication timeout
Local
Local user list
Local user options
RADIUS
RADIUS server list
RADIUS server options
LDAP
LDAP server list
LDAP server options
User group
User group list
User group options
peer
peergrp
Phase 1
Phase 1 list
VPN Phase 1 basic settings
Phase 1 basic settings
VPN Phase 1 advanced settings
Phase 1 advanced settings
Phase 2
Phase 2 list
Phase 2 basic settings
Phase 2 advanced options VPN
Phase 2 advanced options
Manual key
Manual key list VPN
Manual key list
VPN Manual key options
Manual key options
Concentrator list VPN
Concentrator
Concentrator list
VPN Concentrator options
Concentrator options
Ping Generator
Ping generator options VPN
Ping generator options
VPN Dialup monitor
Dialup monitor
Static IP and dynamic DNS monitor
PPTP
PPTP range
VPN L2TP range
L2TP
L2TP range
Local certificate list VPN
Certificates
Local certificate list
VPN Certificate request
Certificate request
Importing signed certificates VPN
Importing signed certificates
VPN CA certificate list
CA certificate list
Importing CA certificates
IPSec configuration procedures VPN
VPN configuration procedures
IPSec configuration procedures
PPTP configuration procedures VPN
PPTP configuration procedures
L2TP configuration procedures
ipsec phase1
ipsec phase2
ipsec vip
Signature
Predefined
Custom
Backing up and restoring custom signature files
Anomaly
IPS Anomaly CLI configuration
Anomaly CLI configuration
Configuring IPS logging and alert email
Default fail open setting
Antivirus
File block
File block list
Configuring the file block list
Quarantine
Quarantined files list
Antivirus Quarantined files list options
Quarantined files list options
AutoSubmit list
AutoSubmit list options
Configuring the AutoSubmit list
Config
Virus list
Grayware
Grayware options
Antivirus config antivirus heuristic
config antivirus heuristic
config antivirus quarantine
config antivirus service http
config antivirus service ftp
Web filter
Content block
Web content block list
Web content block options
Configuring the web content block list Web filter
Configuring the web content block list
URL block
Web URL block list
Web URL block options
Configuring the web URL block list Web filter
Configuring the web URL block list
Web pattern block list
Web filter Web pattern block options
Web pattern block options
Configuring web pattern block
URL exempt
URL exempt list
URL exempt list options
Configuring URL exempt
Web filter FortiGuard managed web filtering service
Category block
FortiGuard managed web filtering service
Category block configuration options
Figure 168:Category block configuration
Configuring web category block
Category block reports
Category block reports options
Generating a category block report
Category block CLI configuration
Script filter
Web script filter options Web filter
Web script filter options
Spam filter
FortiShield
FortiShield options
Configuring the FortiShield cache
IP address
IP address list
IP address options
Configuring the IP address list
RBL & ORDBL
RBL & ORDBL list
RBL & ORDBL options
Configuring the RBL & ORDBL list
Email address
Email address list
Email address options
Configuring the email address list
MIME headers
MIME headers list
MIME headers options
Configuring the MIME headers list
Banned word
Banned word list
Banned word options
Configuring the banned word list
Using Perl regular expressions
Log & Report
Log config
Log Setting options
Log file upload settings
Alert E-mail options
Log filter options
Configuring log filters
Enabling traffic logging
Log access
Viewing log messages
Searching log messages
fortilog setting
syslogd setting
FortiGuard categories
Glossary
Index
0 of .
Results for:
No results containing your search query
P. 1
01-28007-0003-20041203_FortiGate-100_Administration_Guide

01-28007-0003-20041203_FortiGate-100_Administration_Guide

Ratings: (0)|Views: 5,830|Likes:
Published by BoM36040

More info:

Published by: BoM36040 on Jun 16, 2011
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See More
See less

06/16/2011

pdf

text

original

You're Reading a Free Preview
Pages 8 to 38 are not shown in this preview.
You're Reading a Free Preview
Pages 46 to 91 are not shown in this preview.
You're Reading a Free Preview
Pages 99 to 166 are not shown in this preview.
You're Reading a Free Preview
Pages 174 to 302 are not shown in this preview.
You're Reading a Free Preview
Pages 310 to 374 are not shown in this preview.

You're Reading a Free Preview

Download
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->