Fortinet 110C manual Connecting to the FortiGate unit, Transparent mode

Page 18

Connecting to the FortiGate unit

Configuring

Transparent mode

In Transparent mode, the FortiGate unit is invisible to the network. Similar to a network bridge, all FortiGate interfaces must be on the same subnet. You only have to configure a management IP address to make configuration changes. The management IP address is also used for antivirus and attack definition updates.

Figure 5: FortiGate unit in Transparent mode

 

 

 

 

10.10.10.1

 

 

 

 

Management IP

 

Gateway to public network

 

Internal Network

 

 

 

Internet

204.23.1.2

10.10.10.2

External

Internal

 

 

Router

 

10.10.10.3

 

 

 

Transparent mode policies

 

 

 

controlling traffic between

 

 

 

internal and external networks.

You typically use the FortiGate unit in Transparent mode on a private network behind an existing firewall or behind a router. The FortiGate unit performs firewall functions, IPSec VPN, virus scanning, IPS web filtering, and Spam filtering.

Connecting to the FortiGate unit

To configure, maintain and administer the FortiGate unit, you need to connect to it.

There are two methods for these tasks:

using the web-based manger, a GUI interface using a current web browser such as FireFox or Internet Explorer.

using the command line interface (CLI), a command line interface similar to DOS or UNIX commands using an SSH terminal or Telnet terminal.

Connecting to the web-based manager

To connect to the web-based manager, you require:

a computer with an Ethernet connection

Microsoft Internet Explorer version 6.0 or higher or any recent version of the most popular web browser

an Ethernet cable.

To connect to the web-based manager

1Set the IP address of the management computer to the static IP address 192.168.1.2 with a netmask of 255.255.255.0.

2Using the Ethernet cable, connect the internal interface of the FortiGate unit to the computer Ethernet connection.

3Start your browser and enter the address https://192.168.1.99. (remember to include the “s” in https://).

 

FortiGate-110C FortiOS 3.0 MR6 Install Guide

16

01-30006-0481-20080728

Page 17 Page 19
Image 18
Page 17 Page 19
Contents Install G U I D E Trademarks Regulatory complianceContents Advanced configuration FortiGate FirmwareInstalling firmware from a system reboot using the CLI Testing new firmware before installingIndex Page Introduction Register your FortiGate unitAbout the FortiGate-110C About this documentDocument conventions Further Reading Typographic conventionsCustomer service and technical support Fortinet Knowledge CenterComments on Fortinet technical documentation Installing Environmental specificationsGrounding Rack mount instructionsMounting To install the FortiGate unit into a rack Installed mounting bracketsConnecting to the network To power on the FortiGate unitPlugging in the FortiGate To power off the FortiGate unit Turning off the FortiGate unitTurning off the FortiGate unit Configuring NAT vs. Transparent modeNAT mode Connecting to the web-based manager Connecting to the FortiGate unitTransparent mode To connect to the web-based managerConnecting to the CLI To connect to the CLIConfigure the interfaces Configuring NAT modeUsing the web-based manager To configure interfaces Go to System Network InterfaceConfigure a DNS server Adding a default route and gatewayTo modify the default gateway Go to Router Static Adding firewall policiesUsing the CLI To set an interface to use a static addressTo set an interface to use Dhcp addressing To configure DNS server settings To set an interface to use PPPoE addressingConfiguring Transparent mode To modify the default gatewayTo add an outgoing traffic firewall policy Switching to Transparent mode To switch to Transparent mode Go to System StatusTo switch to Transparent mode To configure DNS server settings Verify the configuration Backing up the configurationSet the Administrator password Restoring a configurationAdditional configuration Set the time and dateConfigure FortiGuard Updating antivirus and IPS signaturesAdditional configuration Advanced configuration Protection profilesFirewall policies Firewall policiesConfiguring firewall policies Antivirus optionsAntiSpam options Web filtering Logging FortiGate Firmware Downloading firmwareUsing the web-based manager Upgrading the firmwareReverting to a previous version Backup and Restore from a USB key Using the USB Auto-InstallTo revert to a previous firmware version Using the CLI To upgrade the firmware using the CLIExecute restore image namestr tftpip4 To revert to a previous firmware version using the CLIInstalling firmware from a system reboot using the CLI Execute restore image namestr tftpipv4To install firmware from a system reboot Press any key to display configuration menuRestoring the previous configuration To backup configuration using the CLIAdditional CLI Commands for a USB key To restore configuration using the CLITo configure the USB Auto-Install using the CLI Testing new firmware before installing To test the new firmware imageTesting new firmware before installing Testing new firmware before installing Index 01-30006-0481-20080728 Page Page

110C specifications

The Fortinet 110C is a robust security appliance designed to provide comprehensive protection for small to medium-sized enterprises. It offers advanced security features combined with high-performance networking capabilities, making it an ideal choice for businesses looking to safeguard their digital assets while maintaining efficient network operations.

One of the standout features of the Fortinet 110C is its FortiOS operating system, which provides a unified security platform that integrates various security functionalities. This operating system supports firewall, VPN, intrusion prevention system (IPS), antivirus, and web filtering features, all managed from a single interface. This integration simplifies security management while enhancing overall performance.

The Fortinet 110C is equipped with an impressive throughput capacity, capable of managing up to 5 Gbps of firewall traffic and 1.5 Gbps of VPN throughput. This high performance ensures that businesses experience minimal latency and interruption, even during peak usage periods. The device also supports up to 100,000 concurrent sessions, which is crucial for organizations experiencing increases in network traffic or user connections.

In terms of connectivity, the Fortinet 110C features multiple Ethernet ports, including both WAN and LAN options, allowing for flexible network setups. The appliance supports VLAN configurations, enabling businesses to segment their networks for better security and traffic management. Additionally, the Fortinet 110C offers advanced routing features such as static and dynamic routing, which further enhances its functionality.

Security is paramount, and the Fortinet 110C excels with its comprehensive threat detection and prevention capabilities. Its Intrusion Prevention System (IPS) is designed to detect and neutralize threats in real-time, ensuring that sensitive business data remains protected. Moreover, the integrated antivirus engine scans traffic for malicious content, effectively blocking threats before they reach the network.

For businesses concerned about compliance, the Fortinet 110C includes features that support various regulatory requirements, such as logging and reporting capabilities. This ensures that organizations can maintain records of their network activity and meet audit requirements.

The Fortinet 110C also supports FortiGuard services, providing continuous updates to the security landscape. This ensures that the appliance is equipped to handle emerging threats, reinforcing the organization's security posture.

In conclusion, the Fortinet 110C is a powerful network security appliance that combines advanced security features with high performance. Its integration capabilities, impressive throughput, and robust security measures make it an optimal choice for small to medium-sized businesses looking to enhance their network security while maintaining operational efficiency. With FortiOS at its core and support for a wide range of security functionalities, the 110C stands out as a reliable solution in the ever-evolving cybersecurity landscape.
Top Page Image Contents