Checking the Package Contents, Connecting, State

LED	State	Description
Power	Green	The FortiGate unit is on.

	Off	The FortiGate unit is off.
	Off	The FortiGate unit is off.

Status	Green	The FortiGate unit is running normally.

	Off	The FortiGate unit is off.
	Off	The FortiGate unit is off.

	Green	The correct cable is in use and the connected equipment
MGMT1 and		has power.
MGMT2
MGMT2	Flashing Green	Network activity at this interface.
(Right LED)	Flashing Green	Network activity at this interface.

	Off	No link established.
	Off	No link established.

MGMT1 and	Green	Connection at 1000 Mb.	Esc	Enter
MGMT1 and
MGMT2	Amber	Connection at 100 Mb.
(Left LED)
(Left LED)	Off	Connection at 10 Mb.
	Off	Connection at 10 Mb.

	Green	The correct cable is in use and the connected equipment
Ports 1 to 16		has power.
	Flashing Green	Network activity at this interface.

ASM	CONSOLE		MGMT1	1	3	5	7	9	11	13	15
												POWER



												STATUS
		MODEM	MGMT2	2	4	6	8	10	12	14	16

FortiGate-3016B

Products mentioned in this document are trademarks or registered trade- marks of their respective holders.

Regulatory Compliance

FCC Class A Part 15 CSA/CUS01-30006-0402-20080328

28 March 2008

Checking the Package Contents

Connector	Type	Speed	Protocol	Description

MGMT1 and	RJ-45	10/100/1000	Ethernet	Copper gigabit connection to 10/100/1000
MGMT2		Base-T		copper networks.

Ports 1 to 16	LC SFP	1000Base-SX	Ethernet	Multimode fiber optic connections to
				gigabit optical networks for small packet
				performance required for voice, video and
				other multimedia streaming applications.

CONSOLE	RJ-45	9600 bps	RS-232	Optional connection to the management
		8/N/1	serial	computer. Provides access to the com-
				mand line interface (CLI).

USB	USB		USB	Optional connection to a USB key for
				firmware backup and installation.

Connecting

Connect the FortiGate unit to a power outlet and to the internal and external networks.

•Place the unit on a stable surface.

Front

Ethernet Cables:

Orange - Crossover

Grey - Straight-through

ASM

CONSOLE

MGMT1

											RJ-45 to	Power Cables (2)
Esc	Enter									POWER	DB-9 Serial Cable	Power Cables (2)
										STATUS	DB-9 Serial Cable
	MODEM	MGMT2	2	4	6	8	10	12	14	16

USB

LCD Display

Serial and

Control Buttons

Modem Connections

Fiber Ports

Copper

Management

Ports

Back	4x	Optical Transceivers
Back	4x	Copper Transceivers

Rack-Mount Brackets

Q u i c k S t a r t G u i d e

USER MANUAL

FortiGate-3016B

PowerTrademarks

Products mentioned in this document are trademarks.

ConnectionsDocumentation

ASM	CONSOLE		MGMT1	1			3	5		7		9		11		13	15

Esc	Enter									POWER
										STATUS
	MODEM	MGMT2	2	4	6	8	10	12	14	16

•Connect both power cables into the back of the FortiGate unit, then plug the power cables into a power bar.

•MAIN MENU appears when the unit is up and running.

•If only one power supply is connected, an audible alarm sounds to indicate a failed power supply. To stop this alarm, press the red alarm cancel button.

Planning the Configuration

Optional RJ-45 to DB-9 cable connects to serial port on management computer

Straight-through Ethernet for access to the web-based manager

Fiber optic cable connects

to internal network or Internet

Power alarm reset bu

Power cables connect to power outlets

Before beginning to configure the FortiGate unit, you need to plan how to integrate the unit into your network. Your configuration plan is dependent upon the operating mode that you select: NAT/Route mode (the default) or Transparent mode. Refer to the Documentation CD-ROM for information on how to control traffic, and how to configure HA, antivirus protection, FortiGuard, Web content filtering, Spam filtering, intrusion prevention (IPS), and virtual private networking (VPN).

NAT/Route mode

In NAT/Route mode, each FortiGate unit is visible to the network that it is connected to. All of its interfaces are on different subnets. Each interface connected to a network must be configured with an IP address that is valid for that network.

You would typically use NAT/Route mode when the FortiGate unit is deployed as a gateway between private and public networks. In its default NAT/Route mode configuration, the unit functions as a firewall. Firewall policies control communications through the FortiGate unit.

No traffic can pass through the FortiGate unit until you add firewall policies.

In NAT/Route mode, firewall policies can operate in NAT mode or in Route mode. In NAT mode, the FortiGate unit performs network address translation before IP packets are sent to the destination network. In Route mode, no translation takes place.

Internal Network

192.168.1.3

	Routing policies controlling
	traffic between internal
		networks.
Port 2
192.168.1.99	Port 3	Internal
Port 1	Port 3	network
Port 1	10.10.10.1	network
204.23.1.5	10.10.10.1
204.23.1.5

Internet

Router

10.10.10.2

NAT mode policies controlling traffic between internal and external networks.

Transparent mode

In Transparent mode, the FortiGate unit is invisible to the network. All of its interfaces are on the same subnet. You only have to configure a management IP address so that you can make configuration changes.

You would typically use the FortiGate unit in Transparent mode on a private network behind an existing firewall or behind a router. In its default Transparent mode configuration, the unit functions as a firewall. No traffic can pass through the FortiGate unit until you add fire- wall policies.

You can connect up to four network segments to the FortiGate unit to control traffic between these network segments.

DMZ network

	Web Server
Port 3	Mail Server
Port 3

Poirt 1

Internet

Router

Port 2

Internal network

Hub or switch

Fortinet 3016B user manual Checking the Package Contents, Connecting, Planning the Configuration

Models: 3016B

State

Description

FortiGate-3016B

Checking the Package Contents

Connecting

Planning the Configuration

NAT/Route mode

Transparent mode