EasyManua.ls Logo

Fortinet FortiWAN - Web UI and CLI Overview

Fortinet FortiWAN
182 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
How to set up your FortiWAN Web UI Overview
Type “sslcert set [Enter] to set new SSL certificate for working with FortiWAN WebUI. You have to manually input the
SSL private key and its correspondent certificate in text after the command prompt “sslcert> line by line. The content
inputted for the private key and certificate must start with “-----BEGIN CERTIFICATE-----” and “-----BEGIN RSA
PRIVATE KEY-----”, and end with “-----END CERTIFICATE----- and “----END RSA PRIVATE KEY-----”.
Example: "sslcert set" [Enter]
sslcert> -----BEGIN CERTIFICATE-----
sslcert> …(data encoded in Base64)
sslcert> -----END CERTIFICATE-----
Type “sslcert reset to reset to factory default, the self-signed certificate.
Note that command “sslcert show” displays no RSA private key to avoid possible information leakage.
sysctl: Controls the system parameters - [sip_helper] and [h323_helper].
sysctl sip_helper=[0|1] | sysctl h323_helper=[0|1]
sip_helper: to enable [1] or disable [0] SIP application gateway modules.
h323_helper: to enable [1] or disable [0] H323 application gateway modules.
Example: “sysctl sip_helper=0”[Enter] to disable the SIP application gateway modules.
Note: SIP and H323 application gateway modules execute NAT transparent for SIP and H323. Since NAT transparent
is a built-in function for some SIP and H323 devices, it is suggested to disable the SIP or H323 gateway module in
FortiWAN.
sysinfo: Display information regarding FortiWAN's CPU and memory
sysinfo
Display the status of FortiWAN’s CPU, memory and disk space.
tcpdump Dump network traffic
tcpdump [-aAdDeflLnNOpqRStuUvxX] [-c count] [-E algo:secret] [-i PORT] [-s snaplen] [-T
type] [-y datalinktype] [expression]
traceroute: Shows the packet routes between FortiWAN's port to a specified destination
traceroute [HOST] [TYPE] [INDEX]
Show the packet routes between the [INDEX] WAN ports to the [HOST] destination. [HOST] can be based on IP or
domain name. The LINK parameter can be WAN/LAN/DMZ. If the TYPE is WAN, then port number must also be
specified.
Example: "traceroute www.hinet.net wan 1" [Enter] to show the trace routes from WAN link1 to www.hinet.net.
Note: If the domain name is used in the HOST parameter, then the DNS Server must be set in the Web UI [System]->
[Network Settings]->[DNS Server] (See "Set DNS server for FortiWAN").
31 FortiWAN Handbook
Fortinet Technologies Inc.

Table of Contents

Other manuals for Fortinet FortiWAN

Preview: Handbook
Handbook311 pages

Related product manuals