Adding firewall policies for modem connections – Fortinet FortiGate 50A User Manual
Page 111
Network configuration
Configuring the modem interface
FortiGate-50A Installation and Configuration Guide
111
If the connection to the dialup account fails, the FortiGate unit redials the modem. The
modem redials the number of times specified by the redial limit, or until it connects to a
dialup account.
In standalone mode the modem interface replaces the external ethernet interface.
When configuring the modem, you must set Redundant for to the name of the ethernet
interface that the modem interface replaces. You must also configure firewall policies
for connections between the modem interface and other FortiGate interfaces.
To operate in standalone mode
1
Go to System > Network > Modem.
2
From the Redundant for list, select the ethernet interface that the modem is replacing.
3
Configure other modem settings as required.
See
“Configuring modem settings” on page 108
Make sure there is correct information in one or more Dialup Accounts.
4
Select Dial Up.
The FortiGate unit initiates dialing into each dialup account in turn until the modem
connects to an ISP.
5
Configure firewall policies for connections to the modem interface.
See
“Adding firewall policies for modem connections” on page 111
Adding firewall policies for modem connections
The modem interface requires firewall addresses and policies. You can add one or
more addresses to the modem interface. For information about adding addresses, see
“Adding addresses” on page 147
. When you add addresses, the modem interface
appears on the policy grid.
You can configure firewall policies to control the flow of packets between the modem
interface and the other interfaces on the FortiGate unit. For information about adding
firewall policies, see
“Adding firewall policies” on page 140
Note: Do not add a default route to the ethernet interface that the modem interface replaces.
Note: Do not add firewall policies for connections between the ethernet interface that the
modem replaces and other interfaces.