Basic FortiGate Installation

Video Activity

In this video, you will learn how to connect and configure a new FortiGate unit in NAT/Route mode to securely connect a private network to the Internet. In NAT/Route mode, a FortiGate unit is installed as a gateway or router between two networks. In most cases, it is used between a private network and the Internet. This allows the FortiGate to hide...

Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
1 hour 35 minutes
Difficulty
Beginner
CEU/CPE
2
Video Description

In this video, you will learn how to connect and configure a new FortiGate unit in NAT/Route mode to securely connect a private network to the Internet. In NAT/Route mode, a FortiGate unit is installed as a gateway or router between two networks. In most cases, it is used between a private network and the Internet. This allows the FortiGate to hide the IP addresses of the private network using network address translation (NAT). Visit Fortinet's documentation library at http://docs.fortinet.com

Video Transcription
00:00
>> In this video,
00:00
>> you will learn how to connect and configure
00:00
>> a new FortiGate unit in NAT/Route mode
00:00
to securely connect a private network to the Internet.
00:00
In NAT/Route mode,
00:00
a FortiGate unit is installed as a gateway
00:00
>> or router between two networks.
00:00
>> In most cases, it is used
00:00
between a private network and the Internet.
00:00
This allows the FortiGate to hide
00:00
>> the IP addresses of the private network devices
00:00
>> using Network Address Translation or NAT.
00:00
>> First, you'll need to connect to your FortiGate
00:00
>> into your network setup.
00:00
>> Connect the FortiGate's Internet facing interface,
00:00
usually WAN 1 to your ISP supplied equipment
00:00
>> and connect a PC to the FortiGate
00:00
>> using an internal report, usually Port 1.
00:00
>> Power on the ISP equipment,
00:00
the FortiGate, and the PC.
00:00
On the PC, which is now on the internal network,
00:00
connect to the FortiGate's web-based interface
00:00
using FortiExplore or an Internet browser.
00:00
Login using the default admin account
00:00
with username admin and no password.
00:00
Next, you'll need to configure
00:00
the FortiGate's network interfaces.
00:00
Go to System, Network, Interfaces
00:00
>> and edit the Internet facing interface.
00:00
>> Set the addressing mode to manual
00:00
>> and the API net mask to your public IP address.
00:00
>> Save the configuration,
00:00
and then edit the internal interface,
00:00
usually called internal or LAN.
00:00
Set the addressing mode to manual.
00:00
Set the IP net mask to the private IP address
00:00
>> you want to assign to the FortiGate.
00:00
>> Delete the old DHCP entry
00:00
and create a new one in the correct subnet.
00:00
Now go to router, static,
00:00
static routes or system network routing,
00:00
depending on your model and create
00:00
a new route to allow your FortiGate
00:00
>> to reach the Internet.
00:00
>> Set the destination IP to eight zeros,
00:00
the device to the Internet facing interface,
00:00
and the gateway to the gateway IP provided by your ISP.
00:00
Go to policy and objects, policy IPV4,
00:00
>> to create a new policy
00:00
>> that will allow you to access the Internet.
00:00
>> Set the incoming interface to the internal interface
00:00
>> and the outgoing interface
00:00
>> to the Internet facing interface.
00:00
>> Set the rest to allow all traffic
00:00
>> and set the action to Accept. Enable that
00:00
>> and make sure Use Destination Interface Address
00:00
>> is enabled.
00:00
>> Scroll down to view the logging options.
00:00
To log and track Internet traffic,
00:00
enable Log Allowed traffic,
00:00
and select "All Sessions".
00:00
You can now browse the Internet using any computer
00:00
that's connected to the FortiGate's internal interface.
00:00
You can view the traffic that has been processed
00:00
by our FortiGate by going to System,
00:00
Fort/View, All Sessions.
00:00
Thank you for watching.
00:00
If you need further details,
00:00
you can visit docs.fortinet.com
00:00
to access our complete documentation library.
00:00
Also check out our new cookbook site
00:00
>> at cookbook.fortinet.com
00:00
>> for more tutorials like this one.
Up Next