Firewall Policy Firewall policy examples
FortiGate Version 3.0 MR4 Administration Guide
01-30004-0203-20070102 229
Figure 127:Example SOHO network before FortiGate installation
Company A requires secure connections for home-based workers. Like many
companies, they rely heavily on email and Internet access to conduct business.
They want a comprehensive security solution to detect and prevent network
attacks, block viruses, and decrease spam. They want to apply different protection
settings for different departments. They also want to integrate web and email
servers into the security solution.
To deal with their first requirement company A configures specific policies for each
home-based worker to ensure secure communication between the home-based
worker and the internal network.
1 Go to Firewall > Policy.
2 Select Create New and enter or select the following settings for Home_User_1:
Interface / Zone Source: internal Destination: wan1
Address Name Source:
CompanyA_Network
Destination: Home_User_1
Schedule Always
Service ANY
Action IPSEC
VPN Tunnel Home1
Allow Inbound yes
Allow outbound yes
Inbound NAT yes
Outbound NAT no
Protection Profile Enable and select standard_profile
To Next Page
Loading...
Need help?
General