Fortinet 115 FortiWeb 5.0 Patch 6 Administration Guide
3. Configure these settings:
Setting name Description
IP/Netmask Type the IP address and subnet mask, separated by a forward slash
( / ), such as 192.0.2.2/24 for an IPv4 address or
2001:0db8:85a3:::8a2e:0370:7334/64 for an IPv6 address.
The IP address must be on the same subnet as the network to which
the interface connects. Two network interfaces cannot have IP
addresses on the same subnet.
Administrative
Access
Enable the types of administrative access that you want to permit to
this interface.
These options do not disable outgoing administrative connections,
such as update polling connections to the FDN or outgoing ICMP
resulting from a CLI command such as execute ping. Neither do
they govern traffic destined for a web server or virtual server, which
are governed by policies. These options only govern incoming
connections destined for the appliance itself.
Caution: Enable only on network interfaces connected to trusted
private networks (defined in Trus ted Ho st # 1, Trusted Host #2, Trus ted
Host #3) or directly to your management computer. If possible, enable
only secure administrative access protocols such as HTTPS or SSH.
Failure to restrict administrative access could compromise the
security of your FortiWeb appliance.
Note: Administrative access cannot be configured for VLAN
subinterfaces, except for PING.
HTTPS Enable to allow secure HTTPS connections to the web UI through this
network interface. To configure the listening port number, see “Global
web UI & CLI settings” on page 51.