Fortinet 60B manual Adding a Ping Server, Dead gateway detection

Page 44

Adding a Ping Server

Configuring the modem interface

config system modem set action dial set status enable set holddown-timer 5 set interface wan1

set passwd1 acct1passwd set phone1 1234567891 set redial 10

set username1 acct1user end

Adding a Ping Server

Adding a ping server is required for routing failover for the modem in redundant mode. A ping server confirms the connectivity to an Ethernet interface. When the Ethernet connection to the Internet goes down, the ping server will continually check the interface until it comes up. When it does come up, the FortiGate unit will switch back to the Ethernet connection and shut down the modem.

To add a ping server to an interface

1Go to System > Network > Interface.

2Choose an interface and select Edit.

3Set Ping Server to the IP address of the next hop router on the network connected to the interface.

4Select the Enable check box.

5Select OK to save the changes.

Dead gateway detection

The FortiGate unit uses dead gateway detection to ping the Ping Server IP address to make sure the FortiGate unit can connect to this IP address.

Modify dead gateway detection to control how the FortiGate unit confirms connectivity with a ping server added to an interface configuration. For information about adding a ping server to an interface, see above.

To modify the dead gateway detection settings

1Go to System > Network > Options.

2For Detection Interval, type a number in seconds to specify how often the FortiGate unit tests the connection to the ping target.

3For Fail-over Detection, type a number of times that the connection test fails before the FortiGate unit assumes the gateway is no longer functioning.

4Select Apply.

 

FortiGate-60B FortiOS 3.0 MR6 Install Guide

44

01-30006-0446-20080910

Page 43 Page 45
Image 44
Page 43 Page 45
Contents Install G U I D E Trademarks Regulatory complianceContents Advanced configuration Configuring the modem interfaceConfiguring Transparent mode Protection profilesFortiGate Firmware IndexPage Introduction Register your FortiGate unitDocument conventions About the FortiGate-60BAbout this document Further Reading Typographic conventionsComments on Fortinet technical documentation Customer service and technical supportFortinet Knowledge Center Installing Environmental specificationsGrounding Rack mount instructionsConnecting to the network Plugging in the FortiGateTurning off the FortiGate unit MountingTurning off the FortiGate unit NAT vs. Transparent mode NAT modeConnecting to the FortiGate unit Transparent modeConnecting to the web-based manager To connect to the web-based managerConnecting to the CLI To connect to the CLIConfiguring NAT mode Using the web-based managerConfigure the interfaces To configure interfaces Go to System Network InterfaceConfigure a DNS server Adding a default route and gatewayTo modify the default gateway Go to Router Static Adding firewall policiesTo set an interface to use Dhcp addressing Using the CLITo set an interface to use a static address To configure DNS server settings To set an interface to use PPPoE addressingTo add an outgoing traffic firewall policy Configuring Transparent modeTo modify the default gateway Switching to Transparent mode To switch to Transparent mode Go to System StatusTo switch to Transparent mode To configure DNS server settings Verify the configuration Backing up the configurationRestoring a configuration Additional configurationSet the Administrator password Set the time and dateConfigure FortiGuard Updating antivirus and IPS signaturesAdditional configuration Advanced configuration Protection profilesFirewall policies Firewall policiesConfiguring firewall policies Antivirus optionsAntiSpam options Web filtering Logging Selecting a modem mode Redundant modeConfiguring modem settings Stand alone modeTo configure modem settings Go to System Network Modem Dial on demandConfiguring the modem using the CLI SyntaxKeywords and variables Description Default Mode redudant Example Phone-numberAdding a Ping Server Dead gateway detectionAdministrative access through the modem port Configuring the Pcmcia modem cardTo configure the modem Go to System Network Modem Adding firewall policies for modem connectionsAt+cpin=5555 FortiGate Firmware Downloading firmwareReverting to a previous version Using the web-based managerUpgrading the firmware To revert to a previous firmware version Backup and Restore from a USB keyUsing the USB Auto-Install Using the CLI To upgrade the firmware using the CLIExecute restore image namestr tftpip4 To revert to a previous firmware version using the CLIInstalling firmware from a system reboot using the CLI Execute restore image namestr tftpipv4To install firmware from a system reboot Press any key to display configuration menuRestoring the previous configuration To backup configuration using the CLITo configure the USB Auto-Install using the CLI Additional CLI Commands for a USB keyTo restore configuration using the CLI Testing new firmware before installing To test the new firmware imageTesting new firmware before installing Testing new firmware before installing Index System modem 43 system reboot, installing Page Page Page Page

60B specifications

The Fortinet FortiGate 60B is a compact, high-performance network security appliance designed for small to medium-sized businesses. As part of Fortinet's FortiGate series, the 60B integrates advanced security features and technologies, making it an ideal solution for organizations seeking to protect their networks from growing cyber threats.

One of the main features of the FortiGate 60B is its robust firewall capability. The device provides next-generation firewall (NGFW) functionalities, allowing businesses to monitor and control traffic at multiple layers. This includes application control, intrusion prevention, and web filtering, ensuring that only legitimate traffic is allowed access to critical resources. With a strong emphasis on threat detection, the 60B employs FortiGuard Labs' threat intelligence services to stay updated on the latest malware and attack vectors.

Another significant characteristic of the FortiGate 60B is its integrated virtual private network (VPN) capabilities. The device supports both site-to-site and remote access VPNs, enabling secure connections for remote employees and branch offices. This feature is essential for organizations that require secure communication over public networks, ensuring that sensitive data remains protected.

Performance is also a focal point of the FortiGate 60B. The appliance is equipped with dedicated hardware acceleration that optimizes throughput and minimizes latency. With impressive SSL inspection capabilities, it can handle encrypted traffic efficiently, making it well-suited for an increasingly secure internet landscape.

The FortiGate 60B also boasts extensive reporting and analytics features, enabling IT teams to gain valuable insights into network activity. This includes detailed logs and dashboards that help organizations identify potential security risks and respond to incidents in real time. In addition, the appliance is built with scalability in mind, allowing businesses to expand their security posture as they grow.

Furthermore, the FortiGate 60B is designed for ease of management. The unit can be configured and monitored through Fortinet's centralized management system, FortiManager, simplifying the administration of multiple devices across various locations.

In summary, the Fortinet FortiGate 60B is a powerful, versatile network security solution that combines advanced firewall capabilities, VPN support, and integrated threat intelligence. With its strong performance metrics and user-friendly management tools, it is an excellent choice for organizations aiming to bolster their cybersecurity defenses while maintaining operational efficiency.
Top Page Image Contents