How To Get Your Fortigate 40f Firewall Up And Running In No Time! Fortigate Configuration

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
okay so I have connected the 40 gate we need to find out the IP which IP is the default IP I already know what IP that is but in order to show you um you can go to command prompt type in IPC slash all and look for the ethernet which is this right here ethernet adapter this one and this is the default gateway which is 1.99 so we're going to type that in here and then two DPS 192.1681.99 click on the glass click next um I think the password is user is admin there's no password okay now we're going to enter a password old password is a blank new password just entries with your password login with your new password there we go register with 40K we will do that later right now we're only going to set up the interfaces just to quickly show you how the 40 gate is connected um in a port number one I've connected the laptop there's no connection onto the van meaning this what you get has no internet right now okay so to keep things consistent with the rest of the configuration what we're going to do is set up this Lan interface and we are going to give it an IP we're going to remove the 1 9 2 which is a class a subnet and give it a Class C i p so 255.0 he actually don't want this the range is gonna be one two ten 2015 10 0 1 0 2 252. the reason why I'm starting with 50 is to reserve your uh the below IPS for printers and things like that as soon as I do this I'm going to lose the connectivity and I will have to reset so no problem let's do that okay let's take a look at the IPS now and I can see right here the Gateway is 2.1 and the IP address assigned is 2.50 perfect so I can open up a new window go to https and a 0.2.1 there we go I can close the other window I'm just going to log in here so I'm going to name this device P let's change the time to restring time zone indirect to https that's good and profile paste everything else is good click apply also we have a static IP for a van interface which I'm going to set up uh later on because I want to have the internet on this which is this right here currently it is set up on DHCP so we have not connected anything to the ram as soon as I connect something to the van it's going to issue the IP and what I'm going to do is I'm going to come back to this and assign aesthetic IP um once all the 40 guards stuff is turned on so let me just double check everything I want to make sure if I go to policy and let's see what we've got here okay we name it land right two times outbound okay currently you see this because the the interface is down it's the van interface nothing is uh attached to that anyway I'm gonna double click on this okay go inside and I'm going to change few things here outgoing traffic needs to be netted that's good we're going to keep it flow based uh you don't want to do it the proxy base because the proxy base is going to utilize louder bandwidth and it's going to inspect each and every traffic which uh puts a lot of pressure on the device itself so here we're going to turn on antivirus we're going to our web filter DNS we're not going to do application control that does break a lot of stuff and we'll do the IPS we'll keep this at all default this default default default we want to log all the sessions and you want to enable the policy we're going to click ok so that is the firewall policy setup in bigger companies we usually don't allow service all we have granular rules for each policy but in this case we're going to do allow just to have the internet held down another thing we want to check is the DNS 40 guard DNS is perfect so we're not going to change that now if I come here to the log settings memory logging is fine we do have to do Cloud logging settings so I need to connect this to the Internet so what I'm going to do is I'm going to connect this device with the event line to another switch if you see van is turned green which means I just connected it it is going to issue an IP here soon that is going to be an internal IP the reason being is that it's connected to my switch but it will have the internet outbound soon so meanwhile I'm gonna just go here take a look okay we already have an account so let's login if you don't have an account you can create one by clicking here but in our case we already have an account because we like to keep all the 40 gigs under the same account so by coming to the 40 guard you're going to enter your user username and password and it should once you log in it will give you your license information okay I'm going to change the schedule update to daily instead of every I want uh update server to be on the US and then I'm going to hit apply okay I've already done that so I'm just showing you the settings what's been done okay another thing is um firewall policy make sure you name this policy whatever you want I like to say land to ran outbound and uh currently is sourcing all destination all service all um usually you don't want to do that because of the the nature of the business so you want to have a granular firewall policy but in this case we're testing so this is fine apply all the security profile you can we got antivirus web DNS IPS and SSL those are applied all you do is just double click on that go down and turn on turn on all of this I want to log all the sessions as well instead of just security events I want to log on everything okay so that's good now I'm going to go to the log settings if you go to lock settings right here memory logging is fine I just I turned on the cloud settings the cloud login settings it will ask you to enter your username and password which once you entered that it will start collecting the logs into the 48 cloud you have a choice to do real time every minute or every five minutes I prefer real time click on real time event logs should be all local traffic log will be all result most name yes and the result unknown application yes which is screen and click apply as you can see the logs are already being ingested to the 48 Cloud okay another thing we would want to do is update the firmware and in our case we just updated to 6414 okay uh it is a good idea to update as soon as you have the proper mature version of the update 4.14 is a mature version we have the ability to go to 7012 as well as 725. uh these 12 and dot five anything above five does represent a mature um um firmware 4040 gate this one I would probably not want to do that yet because it's only at 4.0 once they come now to 4.5 I could probably update that another thing I wanted to show you is this client has a static IP address so usually DHCP is connected here where as soon as you connect your ethernet wire it provides the IP address the Gateway and the subnet but in our case we have a static IP so I'm going to click manual enter whatever the static IP you have been provided by your ISP enable that click ok and then one more thing you will need is you'll need to set up a static route you can do create new destination would be all the IPS which is zero zero zero slash subnet which is zero zero zero zero Gateway is where you're going to put your ISP Gateway whatever they provide you uh whatever the IP it is um just randomly typing this IP no idea and the interface needs to be the outside interface because um this is fine because currently this box has no internet okay so outside interface and then you're gonna click ok as soon as you connect that device to your ISP modem it should have the connectivity outbound and uh yeah and this is how you set up the 40 gate interface DNS you set up static route firewall policy and lock settings so hopefully you guys enjoyed watching this video if you have any questions or comments please feel free to drop them into the chat section if you like the video make sure to like And subscribe and hit that Bell notification icon so you are notified for all new videos until then you guys have a nice day
Info
Channel: Loyal Tech and Security
Views: 4,572
Rating: undefined out of 5
Keywords: fortigate firewall, fortigate firewall configuration, fortigate how to, fortinet tutorial, fortigate tutorial, fortigate configuration, fortigate firewall policy configuration, fortigate firewall configuration step by step, network security, fortinet firewall, network engineer, firewall tutorial, fortinet how to, fortigate 40f, how to setup fortigate 40f, dummys guide to fortigate 40f, beginners guide to fortigate 40f, set up fortigate 40f firewall in 5 minutes
Id: 7_pCAa6yShU
Channel Id: undefined
Length: 14min 50sec (890 seconds)
Published: Wed Jun 28 2023
Related Videos
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.