Time
1 hour 35 minutes
Difficulty
Beginner

Video Description

In this video, you will learn how to configure SSL VPN for a remote worker to connect to a FortiGate-protected network, and enforce your security policies. You will create a remote worker named Jack. When Jack works at home, or on his travels, he can go to the web portal using any device with Internet access and FortiClient. The SSL VPN tunnel provides an encrypted communication path for Jack to connect to internal network connections and protected Internet access. Visit Fortinet's documentation library at http://docs.fortinet.com.

Video Transcription

00:00
In this video, you will learn how to add. Afford a gate in transparent mode to your existing network configuration, adding security with no added complexity.
00:10
Afford a gate in transparent mode, performs no routing or network address translation but can still filter and scan traffic.
00:18
It will silently log traffic and apply security profiles like application control, anti virus and Web filtering. With no indication that the four to gate is, they're giving you an invisible line of security between the Internet and your internal network.
00:37
First, open the fourth gate dashboard to change the four Gates operation mode from Nat. Too transparent.
00:43
Changing it will remove some of your configuration, so we recommend you select back up in the system information widget before continuing.
00:52
Select change next to operation Mode.
00:55
Set the operation mode too transparent and enter a management I P. Net mask and the default gateway i p to the Internet.
01:07
Visit the new management I P To get back to the interface.
01:21
Now, you'll need to create a policy to allow traffic through the Ford a gate,
01:25
go to policy and objects I pee before and create a new policy.
01:32
Set the incoming interface to the interface that will connect to the internal network
01:38
and set the outgoing interface to the interface that will connect to the router and Internet
01:42
Configure the rest as normal setting addresses and service is to all to allow all traffic through
01:49
skip, enabling security features for now. So you could be sure that the network setup is working.
01:55
Scroll down to logging options and enable log allowed traffic, selecting all sessions to ensure that all traffic is logged.
02:10
Now go to system dashboard status
02:15
and find the system resources widget.
02:17
Select shutdown to power off the fourth gate unit
02:22
or enter execute shutdown in the C L. I console.
02:30
Wait until the device powers off completely and then connect the router to the Internet facing interface and the internal network to the internal port Interface
02:39
Power on the Ford A Gate unit and wait for it to load.
02:44
Open a browser from a computer on the internal network and browse the Internet to ensure that you've connected the devices properly.
02:54
Once you've verified that the setup is working, open the fourth gate interface and go to policy and objects I p v. Four
03:02
and edit your internal to Internet policy,
03:06
scroll down to the security profile section and enable some default profiles, such as anti virus application control and Web filtering.
03:15
They could be configured further by going to security profiles in the interface,
03:23
open a browser and browse the Internet again. You will have direct access to any Internet resources.
03:30
Meanwhile, the 48 will be scanning your traffic for viruses and logging her application use.
03:38
You can view the log traffic by going to log in. Report forward traffic log.
03:52
Thank you for watching. If you need further details, you can visit docks dot fortunate dot com at any time to access our complete documentation library.

Up Next