Connecting the FortiGate unit to your networks

NAT/Route mode installation

 

 

9Set the default route to the Default Gateway IP address (not required for DHCP and PPPoE).

set system route number <route_no> dst 0.0.0.0 0.0.0.0 gw1 <gateway_ip>

Example

set system route number 0 dst 0.0.0.0 0.0.0.0 gw1 204.23.1.2

Connecting the FortiGate unit to your networks

After you complete the initial configuration, you can connect the FortiGate unit between your internal network and the Internet. You can also connect networks to the user-defined interfaces that you configured.

There are 4 10/100/1000 Base-TX connectors on the FortiGate-800:

Internal for connecting to your internal network,

External for connecting to your public switch or router and the Internet,

DMZ for connecting to a DMZ network,

HA for connecting to another FortiGate-800 for high availability (see “High availability” on page 73),

There are 4 10/100 Base-TX connectors on the FortiGate-800:

user-defined interfaces 1 to 4 for connecting up to four additional networks to your FortiGate unit.

Note: You can also create redundant connections to the Internet by connecting two interfaces to separate Internet connections. For example, you could connect the external interface and the DMZ interface or any available user-defined interface to different Internet connections, each provided by a different service provider. See “Configuration example: Multiple connections to the Internet” on page 50.

To connect the FortiGate unit running in NAT/Route mode

1Connect the Internal interface to the hub or switch connected to your internal network.

2Connect the External interface to your public switch or router.

3Optionally, connect the DMZ interface to your DMZ network.

You can use a DMZ network to provide access from the Internet to a web server or other server without installing the servers on your internal network.

46

Fortinet Inc.

Page 46
Image 46
Fortinet FortiGate-800 manual Connecting the FortiGate unit to your networks