Firewall

Introduction

 

 

DHCP server

Addition of a WINS server to DHCP configuration.

Reserve IP/MAC pair combinations for DHCP servers (CLI only).

RIP

New RIP v1 and v2 functionality. See “RIP configuration” on page 121.

SNMP

SNMP v1 and v2 support.

Support for RFC 1213 and RFC 2665

Monitoring of all FortiGate configuration and functionality

See “Configuring SNMP” on page 134

Replacement messages

You can customize messages sent by the FortiGate unit:

When a virus is detected,

When a file is blocked,

When a fragmented email is blocked

When an alert email is sent

See “Customizing replacement messages” on page 136.

Firewall

The firewall default configuration has changed. See “Default firewall configuration” on page 142.

Add virtual IPs to all interfaces. See “Virtual IPs” on page 160.

Add content profiles to firewall policies to configure blocking, scanning, quarantine, web content blocking, and email filtering. See “Content profiles” on page 169.

Users and authentication

LDAP authentication. See “Configuring LDAP support” on page 177.

VPN

See the FortiGate VPN Guide for a complete description of FortiGate VPN functionality. New features include:

Phase 1

AES encryption

Certificates

Advanced options including Dialup Group, Peer, XAUTH, NAT Traversal, DPD

Phase 2

AES encryption

Encryption policies select service

Generate and import local certificates

Import CA certificates

20

Fortinet Inc.

Page 20
Image 20
Fortinet 100 user manual Dhcp server, Replacement messages, Firewall, Users and authentication