Fortinet ORTIWIFI-60A /AM manual Configure the firewall policies

Page 64

Setting up the FortiWiFi unit as an Access Point

Using a wireless network

9Enter the MAC addresses and select to Allow or Deny them from the wireless network.

Note: You will need to distribute the information entered in step 2 and step 5 with the wireless users so they can connect to the wireless network.

Note: It is highly recommended you do not select “None”. Selecting None will leave your wireless network prone to hackers.

Configure the firewall policies

The FortiWiFi unit provides WAN interfaces for Internet connections. You can configure the Internet connection for both wired networks on the internal and/or DMZ interfaces and the wireless network through the WLAN interface.

You can provide secure Internet access for wireless clients by creating firewall policies from the WLAN interface to the WAN1 or WAN2 interfaces.

The following example creates a policy from the wireless clients (WLAN interface) to the Internet (WAN1 interface) using traffic shaping, firewall authentication and the default Strict content policy.

To create a new wall policy for a secure Internet connection

1Go to Firewall > Policy.

2Select the blue arrow for WLAN to WAN1.

3Select Create New.

Configure the following settings:

Interface/Zone Source

WLAN

Interface/Zone

WAN1

Destination

 

Address Name Source

All

Address Name

All

Destination

 

Schedule

Always

Service

ANY

Action

ACCEPT

NAT

Enable

Protection Profile

Strict

4Select Advanced.

5Select Traffic Shaping.

6Configure traffic shaping bandwidth and Traffic Priority settings to meet your requirements.

7Select OK.

64

FortiWiFi-60A/AM FortiOS 3.0 MR4 Install Guide

01-30004-0283-20070215

Page 63 Page 65
Image 64
Page 63 Page 65
Contents Install G U I D E Trademarks Regulatory complianceContents Configuring the FortiWiFi Configuring the modem interfaceFortiWiFi Firmware Using a wireless networkIndex Page About the FortiWiFi unit FortiWiFi-60A/AMRegister your FortiWiFi unit FortiGuard Subscription ServicesFortinet Family Products FortiClientFortiMail FortiAnalyzerFortiReporter FortiBridgeAbout this document Document conventionsTypographic conventions Addressipv4FortiGate Install Guide Fortinet documentationFortinet Knowledge Center Customer service and technical supportComments on Fortinet technical documentation Customer service and technical support Installing the FortiWiFi unit Package ContentsPowering on the FortiWiFi unit To power on the FortiWiFi unitSpecifications MountingConnecting to the FortiWiFi unit Powering off the FortiWiFi unitCommand line interface To power off the FortiWiFi unitConnecting to the web-based manager To connect to the web-based managerConnecting to the CLI System DashboardQuick installation using factory defaults To connect to the CLIWelcome Bits per second 9600 Data bits ParityGo to System Network Options Quick installation using factory defaults Factory defaults Factory default Dhcp server configuration Factory default NAT/Route mode network configurationFactory default Transparent mode network configuration Factory default firewall configurationFactory default protection profiles Restoring the default settings Restoring the default settings using the web-based managerRestoring the default settings using the CLI To reset the default settings Go to System StatusRestoring the default settings Planning the FortiWiFi configuration NAT/Route modeNAT/Route mode with multiple external network connections Example NAT/Route mode network configurationTransparent mode Example NAT/Route multiple internet connectionNAT/Route mode installation Preparing to configure the FortiWiFi unit in NAT/Route modeDhcp or PPPoE configuration Using the web-based managerNAT/Route mode settings Administrator Password Internal PPPoE setting User name PasswordConfiguring basic settings To configure interfaces Go to System Network InterfaceAdding a default route Verifying the web-based manager configurationUsing the command line interface Configuring the FortiWiFi unit to operate in NAT/Route modeTo add/change the administrator password To configure interfacesExample To set the WAN1 interface to use DHCP, enterTo configure DNS server settings To add a default routeTo set the WAN1 interface to use PPPoE, enter Get system interfaceConnecting the FortiWiFi unit to the networks To connect the FortiWiFi unitConfiguring the networks NAT/Route mode connectionsTransparent mode installation Preparing to configure Transparent modeTransparent mode settings Administrator Password DNS SettingsTo change to Transparent mode using the CLI To verify the DNS server settingsConnecting the FortiWiFi unit to your network Reconnecting to the web-based managerTo connect the FortiWiFi unit running in Transparent mode Next steps Set the date and timeUpdating antivirus and IPS signatures Scheduling antivirus and IPS updates To update IPS signatures using the CLIUpdating the IPS signatures from the CLI EveryTo enable schedule updates from the CLI Adding an override serverDaily WeeklyTo add an override server using the CLI Config system autoupdate override set address Set status EndNext steps Configuring the modem interface Selecting a modem mode Redundant mode configurationStand alone mode configuration To configure the FortiWiFi-60A using the CLIEnter the following to configure the dialup account Configuring modem settings Connecting and disconnecting the modem in Stand alone mode To configure modem settings Go to System Network ModemTo connect to a dial-up account Go to System Network Modem To disconnect the modemConfiguring the modem using the CLI Keywords and variables Description DefaultPeermodem1 Adding firewall policies for modem connections Adding a Ping ServerDead gateway detection Setting up a wireless network FortiWiFi unit as an Access PointUsing multiple access points Positioning an Access PointRadio Frequency interface Wireless Security Wireless Equivalent Privacy WEPAdditional security measures Wi-Fi Protected Access WPAMAC address filtering FortiWiFi operation modes Service Set IdentifierAccess Point mode To disable Ssid Go to System Wireless SettingsClient mode Setting up the FortiWiFi unit as an Access PointChanging the operating mode To set the data security Go to System Wireless Settings Set the Dhcp settingsSet the security options Configure the firewall policies To upgrade the firmware using the web-based manager Upgrading the firmware using the web-based managerUpgrading to a new firmware version Upgrading the firmware using the CLI To upgrade the firmware using the CLIExecute restore image Tftp namestr tftpipv4 Execute restore image image.outExecute update-now Reverting to a previous firmware versionReverting to a previous firmware version using the CLI To revert to a previous firmware version using the CLIExecute restore image Tftp image.out To install firmware from a system reboot Press Any Key To Download Boot Image Press any key to display configuration menuEnter Tftp Server Address Enter Local AddressRestoring the previous configuration Save as Default firmware/Run image without savingD/RFortiUSB key Do You Want To Save The Image? y/nTo backup configuration using the CLI Backup and Restore from the FortiUSB keyTo restore configuration using the CLI Using the USB Auto-Install feature To configure the USB Auto-Install using the CLIAdditional CLI Commands for the FortiUSB key Testing a new firmware image before installing itTo test a new firmware image Testing a new firmware image before installing it Type n FortiWiFi unit running v3.x Bios Testing a new firmware image before installing it Index Numerics01-30004-0283-20070215
Top Page Image Contents