FortiGate Ports & LEDs | Lecture#1

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

welcome to lecture number one of our 40 gate installation series where we install a 40 gate firewall on our network step by step and today's topic is 40 gates ports and leds so in this video we will have a look at the different fortigate firewall categories that fourinet has to offer we will then see the physical aspects of our fortigate 60e firewall essentially we will be understanding the physical interfaces and how they work lastly we will have a look at the led lights and their meanings in our 48 firewall hello there and welcome to the first lecture of the series in this lecture we're going to be looking at our firewall physically but before we go towards the firewall physically and see all the ports and stuff let's just go over to the fortigate fortinet's website and try to see the models that they have now if you have a specific need you have to come here before you even place an order or um um like pitching a client or for a specific firewall because each firewall has its own you know like attributes and everything and each client has its own needs so uh they have these categories uh the data center firewalls their virtual machines level mid-range high-end ultra high end and chases now um the fireball we're going to be deploying is off entry level so ever if ever to go to the entry level firewalls i can see all these small teeny mini firewalls that i have over here and this is our firewall that we have at our disposal it's a 4860e so if you really want to go deep and see what 40 gauge 68 really does and what are the specifications because they're this is kind of like the cliff notes of what it does turn protection with a triplet of 200 megabits per second ssl inspection throughput again and all that stuff uh session is really important and then we have these network interfaces so they all depend on your network infrastructure whatever you have at your disposal so we've got the data sheet of 4860 downloaded now let's just hop on towards the data sheet and see what we have over here um so as you can see this is a fireball we're going to be configuring and replacing in our home environment and these are all the specs if you really want to go deep and all the ports and everything uh we are going to be jumping um towards our mobile you know video and we're going to be discussing the ports um and what does each port does and the led lights that it has how does it function uh but if you want to go into the specifications like ips throughput fireball throughput latency and all that you have to go through this data sheet first for any firewall that you choose and then place the order if you are a customer or if you're a vendor and you're pitching this to the customer so you need those needs first so let's jump on to our fortigate firewall now and see the physical ports and stuff over there okay so we have this 40 gauge uh firewall with us and it's 4860e as the exact model that we were looking at right now and um it has these led ports uh that will light up once we plug the power in and this is a rear end basically on which you have these ports and this is the upper end um on which it has some instructions uh on how to connect to these 40-gate firewalls for administrators who don't have actually uh any idea how to do it so they're basically telling us that per connect to port one with your ethernet cable and go to broad go to your browser and type in 192.168.1.99 and the password username is admin and there is no password so the password will be blank and if you want to configure with 40 yard of 40 cloud sorry that then you have to go to 40cloud.com and add the device but your van port should have internet access so if it's a new deployment and you don't have any 40 cloud account you can actually create an account and add this 49 device with the 40 cloud key and if you have any licenses associated with this this specific foreign guard then it has this um serial number over here um it has licenses binded with this serial number so if you can see clearly so it's gonna pick those licenses as well so forty cloud is really important even if you don't want to configure it with 40 cloud you do need to register it uh with the 40 cloud in order to get the licenses okay so now going on towards the ports that we have here at our disposal first of all the dc adapter it comes with this adapter it's small adapter it's not like your laptops and everything it's really small this is the port if you could see kind of different from what you normally get in in devices so just plug it so that it comes up and to see the status you have to actually see uh in front if the led lights are on or not so as you can see this is the power led that's turned on and this is a 40k um logo okay so what do we have next is a usb port uh that's good if you want to upload something or download something or get the backup in the usb you could do that and then we have a console port which we always have in devices now if we've been having this console port on almost every device okay then we have two van interfaces when one and when two and a dmz and seven uh lan ports now these lan ports that you see from one to seven are kind of like bundled together and they have like one subnet a one nine two one six eight one dot zero slash twenty four so any port you plug it in you basically come on to the network of 192.168.1.0.24 and they have a dhcp enabled so you get the ip address as well so they try to make it as plug and play as possible and then we have these wan ports van ports are dhcp clients meaning if you have internet access supposedly i have insurance access on um this cable that is coming from the switch on the back end and as you can see it's a 2960 that i am using uh for my labs and stop uh if it has internet access i could actually connect this cable um into one of the vans and it will get an ip address just like a laptop or any device and that is considered a wan port so the thing is it can have two van ports so you could have two uplinks coming in uh one from a different isp or from a different switch and another from a different switch off a different subnet so you could just plug that in and it'll get an ip address and it'll start uh its sting i mean it's going to connect to to the instrument you could actually do that so that's how much it's plug and play but the problem is if you have pppoe or you have static ip addresses you have to really configure them you have to go into the gui or cli and configure those ip addresses so they kind of like make it plug and play every vendor does but there is always something you have to do manually and then they have this little doodad called the dmz interface and they actually have a subnet over here i'm not sure about the dhcp but it's 10.10.10.0624 subnet that they already have configured for you so you can actually have a downstream server switch or a server vlan and you could have your servers with ip addresses ranging from 10.10.10.0.24 uh and you can create policies uh according to that obviously you're not going to be doing that now one thing i really want to emphasize here that people get really confused that van 2 n1 dmz they don't really mean or even these ports they don't really mean that you have to and you must connect the wan interfaces on them you can actually change them if you want um but the problem is their names are hard coded i haven't actually figured out a way to change the hard coded name if you guys have you can leave a link i mean leave a comment in the description if you could change when want to run to names the default names what they have so that will be really good so you can name them whatever you want you can name them in aliases but um it's not that kind of thing because these names show up but the thing is the what i'm trying to emphasize here that you can use them from whatever you want you can configure them they just try to make it a plug-in play so it it generally looks like you have to plug and really have to plug in the one when it went to on these specific ports and you have to have lens here you cannot do anything else you can you can get to really flexible and i have actually used the dmz for the third isp in one of my deployments recently so you can actually do that that's not an issue okay the last thing that we're going to be going through physically are these leds that you see one is the power led if i were to zoom in a little bit powerality the status led and the high availability or aj led which is obviously off because i don't have an eha um that would be if i had two uh 48 firewalls but we don't have that if you want to see how that works i could actually make a dynasty or eung lab and show you how that works now on this side you see all of those port numbering that you saw on the back end or here you saw port 1 one dmz ran and went to when one and went to uh you can actually see those ports over here and their leds over here um one two seven dmz band one and when two as you can see that i hope you can see it clearly i'm not a video guy actually i don't have a lot of experience in making videos for my phone or any device so sorry if i mess up a little bit here okay okay the first thing that i'm going to be showing you is uh the speed and the link now we're going to look at the speed now i have an ethernet cable coming from a switch which has all these ports and at fast ethernet so 100 megabits per second so i'm going to plug this guy into 5 plugging it in and straight away you see an amber light coming down a a green light on the link or status and an amber light coming down on the speed now the amber light basically means it's 100 megabits per second link which is a fast ethernet link so people do get confused with the amber link like if something is wrong with this uh cable or something but it's not now we have another uh cable coming in that's gigabit ethernet so let's plug that in again sorry about my video um expertise so as you can see i just plugged it in it turned green and the speed is also green now that indicates that it's a gigabit internet okay so um if i were to switch these ports like i would connect the gigabit to that one uh the fifth one which was flashy thinner previously and place uh plug this fastener into six they're gonna be inverted okay so as you can see now the fifth one is green so it's on gigabit ethernet now and that one is on fast ethernet so that was a physical demonstration of our 40 gauge 60e before we go ahead and deploy this in our home network so now we're going to be connecting to port one in our next lecture and getting an ip address from the series of one nine two one six one and going to be configuring it why a dui well i hope this has been informative for you and i'd like to thank you for viewing you

Info

Channel: Doctor Networks

Views: 110

Rating: undefined out of 5

Keywords: fortigate, fortigate course, fortigate hardware, step by step

Id: sQnq_LAvkyI

Channel Id: undefined

Length: 14min 18sec (858 seconds)

Published: Mon Oct 25 2021