Define a Forti static rout
Forti Firewall installation
Forti NTP shutdown (no license asked for VM)
- get system status – shows the device status
- config system ntp
- set ntpsync disable
- set type custom – use computer's clock
- End
Restart the fort
- execute reboot
Forti IP Export
- config system interface
- edit port1
- set mode static
- set ip 10.196.10.254/24 or 10.196.10.254 255.255.255.0
- set allowaccess ping http https
- End
- show (for control)
- show system interface Shows the IP address assigned to the interfaces.
Defining Forti Static Rout
- config router static
- edit 1
- set gateway 10.196.100.1
- set distance 10
- set device port1
- set dst 10.196.10.0 255.255.255.0
- next
- End
Define HTTP PING SSH and other accesses for Forti Interface
1.config system interface
2.edit port2
3.set allowaccess http ping https ssh
4.end
Ping from the Forti CLI interface
execute ping 8.8.8.8
Forti OS v7 – static IP identification
- config system interface
- edit port1
- set mode static
- set ip 192.168.1.100/24 or 192.168.1.100 255.255.255.0
- End
Define DNS from the FortiGate FortiOS v7 CLI interface
- config system dns
- set primary 8.8.8.8
- set secondary 8.8.8.8
- End
Access the FortiGate FortiOS Forti admin interface from specific IP addresses
- Sample trusted host configuration
- show
- config system admin
- edit "admin-test"
- set trusthost1 10.10.10.1 255.255.255.255
- set trusthost2 192.168.0.0 255.255.0.0
- set vdom "root"
- config dashboard-tabs
Changing the trusted host configuration: - config system admin
- edit admin user
- set trusthost 1 to 10 ip address/mask
- set ip6-trusthost 1 to 10 ip address/mask
Sincerely
Arif Akyüz
Senior Information Technologies System and Network Specialist / Cyber Security / Web Designer