How does a FortiGate Protect Your Network?
How does a FortiGate Protect Your Network? The FortiGate firewall protects your network by taking the various components and using them together to build a kind of wall or access control point so that...
View ArticleWhat’s new for the Firewall in 5.6
What’s new for the Firewall in 5.6 New Firewall Features in 5.6.0 Optimization of the firewall Service cache (355819) In order to improve the efficiency and performance of the firewall Service cache,...
View ArticleWhat is a Firewall?
What is a Firewall? The term firewall originally referred to a wall intended to confine a fire or potential fire within a building. Later uses refer to similar structures, such as the metal sheet...
View ArticleFortiGate Modes
FortiGate Modes The FortiGate unit has a choice of modes that it can be used in, either NAT/Route mode or Transparent mode. The FortiGate unit is able to operate as a firewall in both modes, but some...
View ArticleHow Packets are handled by FortiOS
How Packets are handled by FortiOS To give you idea of what happens to a packet as it makes its way through the FortiGate unit here is a brief overview. This particular trip of the packet is starting...
View ArticleAccess Control Lists
Access Control Lists Access Control Lists (ACLs) in the FortiOS firmware could be considered a granular or more specifically targeted blacklist. These ACLs drop IPv4 or IPv6 packets at the physical...
View ArticleFirewall policies
Firewall policies The firewall policy is the axis around which most of the other features of the FortiGate firewall revolve. A large portion of the settings in the firewall at some point will end up...
View ArticleLearning mode for policies
Learning mode for policies The learning mode feature is a quick and easy method for setting a policy to allow everything but to log it all so that it can later be used to determine what restrictions...
View ArticleSSL/SSH Inspection
SSL/SSH Inspection While the profile configuration for SSL/SSH Inspection is found in the Security Profiles section it is enabled in the firewall policy by enabling any of the security profiles....
View ArticleRPC over HTTP
RPC over HTTP How protocol options profiles and SSL inspection profiles handle RPC (Remote Procedure Calls) over HTTP traffic can be configured separately from normal HTTP traffic. The configuration is...
View ArticleIPv6
IPv6 Internet Protocol version 6 (IPv6) will succeed IPv4 as the standard networking protocol of the Internet. IPv6 provides a number of advances over IPv4 but the primary reason for its replacing IPv4...
View ArticleIPv6 in FortiOS
IPv6 in FortiOS From an administrative point of view IPv6 works almost the same as IPv4 in FortiOS. The primary differences are the use of IPv6 format for addresses and fewer address types for IPv6....
View ArticleNAT
NAT NAT or Network Address Translation is the process that enables a single device such as a router or firewall to act as an agent between the Internet or Public Network and a local or private network....
View ArticleNew FortiGate Has Arrived!!
Pretty stoked that my new POE FortiGate has arrived. For those of you that don’t know, I’m in the process of building my dream house and I now have a new FortiGate to power the place (and the 4 APs...
View ArticleDynamic NAT
Dynamic NAT Dynamic NAT maps the private IP addresses to the first available Public Address from a pool of possible Addresses. In the FortiGate firewall this can be done by using IP Pools. Overloading...
View ArticleBenefits of NAT
Benefits of NAT More IP addresses Available while Conserving Public IP Addresses As explained earlier, this was the original intent of the technology and does not need to be gone into further....
View ArticleNAT in Transparent Mode
NAT in Transparent Mode Similar to operating in NAT mode, when operating a FortiGate unit in Transparent mode you can add security policies and: l Enable NAT to translate the source addresses of...
View ArticleCentral NAT Table
Central NAT Table The central NAT table enables you to define, and control with more granularity, the address translation performed by the FortiGate unit. With the NAT table, you can define the rules...
View ArticleHow FortiOS differentiates sessions when NATing
How FortiOS differentiates sessions when NATing The basics of NAT are fairly simple. Many private addresses get translated into a smaller number of public addresses, often just one. The trick is how...
View ArticleIP Pools
IP Pools IP Pools are a mechanism that allow sessions leaving the FortiGate Firewall to use NAT. An IP pool defines a single IP address or a range of IP addresses to be used as the source address for...
View Article