Fortinet 5.0 Patch 6

Fortinet 116 FortiWeb 5.0 Patch 6 Administration Guide

4. Click OK.

If you were connected to the web UI through this network interface, you are now

disconnected from it.

5. To access the web UI again, in your web browser, modify the URL t to match the new IP

address of the network interface. For example, if you configured the network interface with

the IP address 10.10.10.5, you would browse to: https://10.10.10.5

If the new IP address is on a different subnet than the previous IP address, and your

computer is directly connected to the FortiWeb appliance, you may also need to modify the

IP address and subnet of your computer to match the FortiWeb appliance’s new IP address.

PING Enable to allow:

•ICMP type 8 (ECHO_REQUEST)

• UDP ports 33434 to 33534

for ping and traceroute to be received on this network interface.

When it receives an ECHO_REQUEST (“ping”), FortiWeb will reply with

ICMP type 0 (ECHO_RESPONSE or “pong”).

Note: Disabling PING only prevents FortiWeb from receiving ICMP

type 8 (ECHO_REQUEST) and traceroute-related UDP.

It does not disable FortiWeb CLI commands such as execute ping

or execute traceroute that send such traffic.

HTTP Enable to allow HTTP connections to the web UI through this network

interface. To configure the listening port number, see “Global web UI &

CLI settings” on page 51.

Caution: HTTP connections are not secure, and can be intercepted

by a third party. If possible, enable this option only for network

interfaces connected to a trusted private network, or directly to your

management computer. Failure to restrict administrative access

through this protocol could compromise the security of your FortiWeb

appliance.

SSH Enable to allow SSH connections to the CLI through this network

interface.

SNMP Enable to allow SNMP queries to this network interface, if queries

have been configured and the sender is a configured SNMP manager.

To configure the listening port number and configure queries and

traps, see “SNMP traps & queries” on page 580.

TELNET Enable to allow Telnet connections to the CLI through this network

interface.

Caution: Telnet connections are not secure, and can be intercepted

by a third party. If possible, enable this option only for network

interfaces connected to a trusted private network, or directly to your

management computer. Failure to restrict administrative access

through this protocol could compromise the security of your FortiWeb

appliance.

Description Type a comment. The maximum length is 63 characters.

Optional.

Setting name Description