To Login
FortiGate-VM64-KVM login: admin
Password:
To Set Hostname
FortiGate-VM64-KVM # config system global
FortiGate-VM64-KVM (global) # set hostname FortiGate
FortiGate-VM64-KVM (global) # end
FortiGate #
To Configure IP Address
FortiGate # config system interface
FortiGate (interface) # edit port1
FortiGate (port1) # set mode static
FortiGate (port1) # set ip 192.168.3.150/24 (255.255.255.0)
FortiGate (port1) # set allowaccess https http ssh telnet ping
FortiGate (port1) # set role Wan
FortiGate (port1) # set alias WAN
FortiGate (port1) # end
To configure the route
Static
FortiGate # config router static
FortiGate (static) # edit 1
FortiGate (1) # set dst 0.0.0.0/0
FortiGate (1) # set device port1
FortiGate (1) # set gateway 192.168.3.2
FortiGate (1) # get router info routing-table all
BGP
FortiGate # conf router bgp
FortiGate (bgp) # set as 1000
FortiGate (bgp) # config neighbor
FortiGate (neighbor) # edit 10.10.101.6
FortiGate (10.10.101.6) # set remote-as 1000
FortiGate (neighbor) # end
FortiGate (bgp) # config network
FortiGate (network) # edit 1
FortiGate (1) # set prefix 10.10.101.0/30
FortiGate (1) # next
FortiGate (network) # edit 2
FortiGate (2) # 10.10.101.4/30
FortiGate (2) # end
FortiGate (bgp) # end
FortiGate # sh router bgp
To configure the NAT/Firewall
FortiGate# config firewall address
FortiGate(address) # edit add1
FortiGate(add1) # set type ipmask
FortiGate(add1) # set associated-interface ''
FortiGate(add1) # set color 0
FortiGate(add1) # set allow-routing disable
FortiGate(add1) # set subnet 10.10.101.0 255.255.255.0
FortiGate# conf firewall policy
FortiGate(policy) # edit 1
FortiGate(1) # set name "Policy1"
FortiGate(1) # set srcintf "port1"
FortiGate(1) # set dstintf "port1"
FortiGate(1) # set srcaddr "add1"
FortiGate(1) # set dstaddr "all"
FortiGate(1) # set action accept
FortiGate(1) # set schedule "always"
FortiGate(1) # set service "ALL"
FortiGate(1) # set logtraffic all
To check configuration
FortiGate # show system interface
FortiGate # execute ping-options
FortiGate # execute ping google.com
FortiGate # execute ping 8.8.8.8 source 172.16.0.1
To save configuration
FortiGate # config system global
FortiGate (global) # set cfg-save ?
FortiGate # execute cfg save
To solve the VM problem
"evaluation license has expired. please upload a new license" in fortigate vm
"evaluation license has expired. please upload a new license" in fortigate vm
FortiGate # conf system ntp
FortiGate (ntp) # set ntpsync disable
FortiGate (ntp) # set type custom
FortiGate (ntp) # end
FortiGate # execute reboot
*****
Posts
0 Comments