beautypg.com

Adding firewall policies for modem connections – Fortinet FortiGate 50A User Manual

Page 111

background image

Network configuration

Configuring the modem interface

FortiGate-50A Installation and Configuration Guide

111

If the connection to the dialup account fails, the FortiGate unit redials the modem. The
modem redials the number of times specified by the redial limit, or until it connects to a
dialup account.

In standalone mode the modem interface replaces the external ethernet interface.
When configuring the modem, you must set Redundant for to the name of the ethernet
interface that the modem interface replaces. You must also configure firewall policies
for connections between the modem interface and other FortiGate interfaces.

To operate in standalone mode

1

Go to System > Network > Modem.

2

From the Redundant for list, select the ethernet interface that the modem is replacing.

3

Configure other modem settings as required.
See

“Configuring modem settings” on page 108

.

Make sure there is correct information in one or more Dialup Accounts.

4

Select Dial Up.
The FortiGate unit initiates dialing into each dialup account in turn until the modem
connects to an ISP.

5

Configure firewall policies for connections to the modem interface.
See

“Adding firewall policies for modem connections” on page 111

.

Adding firewall policies for modem connections

The modem interface requires firewall addresses and policies. You can add one or
more addresses to the modem interface. For information about adding addresses, see

“Adding addresses” on page 147

. When you add addresses, the modem interface

appears on the policy grid.

You can configure firewall policies to control the flow of packets between the modem
interface and the other interfaces on the FortiGate unit. For information about adding
firewall policies, see

“Adding firewall policies” on page 140

.

Note: Do not add a default route to the ethernet interface that the modem interface replaces.

Note: Do not add firewall policies for connections between the ethernet interface that the
modem replaces and other interfaces.