beautypg.com

Internet, Fortigate-800 internal network, Fortigate-300 nat device – Fortinet FortiGate-800 User Manual

Page 125

background image

Virus and attack definitions updates and registration

Enabling push updates

FortiGate-800 Installation and Configuration Guide

125

Figure 24: Example network topology: Push updates through a NAT device

General procedure

Use the following steps to configure the FortiGate NAT device and the FortiGate unit
on the internal network so that the FortiGate unit on the internal network can receive
push updates:

1

Add a port forwarding virtual IP to the FortiGate NAT device.

2

Add a firewall policy to the FortiGate NAT device that includes the port forwarding
virtual IP.

3

Configure the FortiGate unit on the internal network with an override push IP and port.

Internet

Virtual IP maps

64.230.123.149:45001

to

192.168.1.99:9443

External IP
64.230.123.149

FortiResponse
Distribution
Network (FDN)

FortiGate-800

Internal Network

Esc

Enter

External IP or
Management IP
192.168.1.99

FortiGate-300

NAT Device

Push update to
IP address 64.230.123.149
and port 45001

Esc

Enter

CONSOLE

I N T E R N A L

E X T E R N A L

D M Z

HA

1

2

3

4

USB

8

P W R

See also other documents in the category Fortinet Hardware: