Français dropdown-ico

Manuel d’utilisation Fortinet 310B

62 pages 1.7 mb
Télécharger

Aller à la page of 62

Summary
  • Fortinet 310B - page 1

    www.fortinet.com FortiG at e -3 1 0B FortiO S 3 .0 MR 6 INST ALL GUIDE ...

  • Fortinet 310B - page 2

    FortiGate-310B Install Guide FortiOS 3.0 MR6 15 August 2008 01-30006-04 72-20080815 © Copyright 2008 Fortine t, Inc. All rights reserved. No p art of this publication including text, examples , diagrams or illustrations may be reproduced, tra nsmitted, or translated in any form or by any means, electronic, mechanical, manual, op tical or otherwise ...

  • Fortinet 310B - page 3

    Contents FortiGate-310B FortiOS 3.0 MR6 Install Guide 01-30006-0472-2008081 5 3 Content s Register your FortiGate unit ................ ................ ................... ................ .......... 7 About the FortiGate-310B .... ................... ................ ................ .................... ...... 8 LACP configuration .............. ...

  • Fortinet 310B - page 4

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 4 01-30006-0472-200808 15 Contents Configuring Transparent mode ............... ................... ................ ................... . 26 Using the web-based manager .................. ................ ................... .............. 26 Switching to Transparent mode ........ ................... .. ...

  • Fortinet 310B - page 5

    Contents FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 5 Using the web-based manager .................. .................... ................... .............. 46 Upgrading the fi rmware .......................... ................ ................. ................ .... 46 Reverting to a previous version ........... ........ ...

  • Fortinet 310B - page 6

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 6 01-30006-0472-200808 15 Contents ...

  • Fortinet 310B - page 7

    Introduction Register your FortiGate unit FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 7 Introduction Welcome an d thank you for selecting Fortinet product s for your real-time network protection. The FortiGate Unified Threat Man agement System improves network security , reduces network misuse and abuse, and help s you use ...

  • Fortinet 310B - page 8

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 8 01-30006-0472-200808 15 About the FortiGate-310B Introduction About the FortiGate-310B The FortiGate-310B is designed to raise the expect ations of mid-range security devices. Incorporating FortiASIC ne twork pr ocessors for firewall/VPN acceleration and the FortiASIC Content Processor for content insp ...

  • Fortinet 310B - page 9

    Introduction Further Reading FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 9 • FortiGate Fir mware – Describes how to install, u pdate, restore and test firmware for the For tiGate device. • AMC modules – Describes inserting, removing and using Fortinet AMC single- width modules in th e FortiGate u nit. Document conv ...

  • Fortinet 310B - page 10

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 10 01-30006-0472-200808 15 Further Reading Introduction • FortiGate Administration Guide Provides basic informati on about how to configure a FortiGate unit, including how to define FortiGate pr otection profiles and firewall policies; h ow to apply intrusion prevention, antivirus protecti on, web cont ...

  • Fortinet 310B - page 11

    Introduction Customer service a nd technical su pport FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 11 Comments on Fortinet te chnical documentation Please send informa tion about any errors or omissions in this document, or any Fortinet tech nical documen tation, to techdoc@fo rtinet.com. Customer service and technical supp ...

  • Fortinet 310B - page 12

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 12 01-30006-0472-200808 15 Customer service and technical support Introduction ...

  • Fortinet 310B - page 13

    Installing Environmental specifications FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 13 Inst alling This chapter describes in stalling your FortiGate unit in yo ur server room, environmental specifications and how to mount the FortiGate in a rack if applicable. This chapter contains the follow ing topics: • Environmenta l ...

  • Fortinet 310B - page 14

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 14 01-30006-0472-200808 15 Cautions and warnings Installing • Connect the equipment into an outlet on a circuit different fro m that to which the receiver is connecte d. • Consult the dealer or an experien ced radio/TV technician for help. The equipm ent compliance with FCC radiation exposu re limit ...

  • Fortinet 310B - page 15

    Installing Cautions and warni ngs FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 15 When placing the For tiGate unit on any flat , sta ble surface, ensure the unit has at least 1.5 inches (3.75 cm) of clearance on each side to ensure adequate airflow for cooling. For rack mounting, use the moun ting brackets and screws includ ...

  • Fortinet 310B - page 16

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 16 01-30006-0472-200808 15 Plugging in the FortiGa te Installing Figure 3: Mounting in a rack Plugging in the FortiGate Use the following steps to conne ct the power supply to the FortiGate unit. T o power on the FortiGate unit 1 Ensure the power switch, located at the ba ck of the FortiGate unit is in t ...

  • Fortinet 310B - page 17

    Configuring NA T vs. T ransparent mo de FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 17 Configuring This section provides an overview of t he operating modes of the FortiGate unit, NA T/Route and Tr ansparent, and how to co nfigure the FortiGate unit for each mode. There are two ways you can configure the FortiGa te unit, u ...

  • Fortinet 310B - page 18

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 18 01-30006-0472-200808 15 Connecting to the FortiGate unit Configuring Transparent mode In T ransparen t mode, the FortiGate unit is invisible t o the network . Similar to a network bridge, all FortiGate interfaces must be on the same subnet. Y ou only have to configure a mana gement IP address to make ...

  • Fortinet 310B - page 19

    Configuring Connecting to the FortiGate unit FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 19 T o support a secure HT TPS authentication method, the FortiGate unit ships with a self-signed security certific ate, which is offered to remote clients whenever they initiate a HTTPS connecti on to the FortiGate unit. When you conn ...

  • Fortinet 310B - page 20

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 20 01-30006-0472-200808 15 Configuring NA T mode Configuring Configuring NA T mode Configuring NA T mode involves defining interface add resses and default routes, and simple firewall policies. Y ou can use the web-based manager or the CLI to configure the FortiGate unit in NA T/Route mode. Using the web ...

  • Fortinet 310B - page 21

    Configuring Configuring NA T mode FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 21 4 Select OK. 5 Repeat this procedure for each interf ace as required. Configure a DNS server A DNS server is a service that conver ts symbolic node names to IP addresses. A domain name server (DNS server) impl ements the protoc ol. In simple t ...

  • Fortinet 310B - page 22

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 22 01-30006-0472-200808 15 Configuring NA T mode Configuring For an initial configuration, you must edit the factor y configured static defau lt route to specify a different defau lt gateway for the FortiGat e unit. This will enable the flow of data th rough the FortiGate unit. For details on add ing add ...

  • Fortinet 310B - page 23

    Configuring Configuring NA T mode FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 23 3 Set the following and select OK. Firewall policy configurati on is the same in NA T/Route mode and T ransparent mode. Note that these policies allo w all traffic throug h. No protection profiles have been applied. Ensure you create additiona ...

  • Fortinet 310B - page 24

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 24 01-30006-0472-200808 15 Configuring NA T mode Configuring T o set an interface to use PPPoE addressing config system interface edit external set mode pppoe set username <name_str> set password <psswrd> set ipunnumbered <ip_address> set disc-retry-timeout <integer_seconds> set p ...

  • Fortinet 310B - page 25

    Configuring Configuring NA T mode FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 25 In the factory default configuration, entr y number 1 in the S tatic Route list is associated with a destination address of 0.0.0.0/0.0.0.0, which means any/all destinations. This route is called the "sta tic default rout e". If no o ...

  • Fortinet 310B - page 26

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 26 01-30006-0472-200808 15 Configuring T ransparent mode Configuring Configuring T ransp arent mode Configuring T ransparent mode involves switch ing to Transparent mode, configurin g the management IP ad dress, default routes, and simple firewa ll policies. Y ou can use the web-based manager or the CLI ...

  • Fortinet 310B - page 27

    Configuring Configuring T ransparent mode FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 27 For the initial installation, a single firewa ll policy that enables all traffic through will enable you to verify your configur ation is working. On lower-end unit s such a default firewall policy is already in plac e. For the higher ...

  • Fortinet 310B - page 28

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 28 01-30006-0472-200808 15 Configuring T ransparent mode Configuring T o switch to T ransp arent mode config system settings set opmode transparent set manageip <address_ip> <netmask> set gateway <address_gateway> end Configure a DNS server A DNS server is a service that convert s symbo ...

  • Fortinet 310B - page 29

    Configuring V erify the co nfiguration FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 29 Note that these policies allo w all traffic throug h. No protection profiles have been applied. Ensure you create additional firewall policies to accommodate your network requirement s. V erify the configuration Y our FortiGate unit is no ...

  • Fortinet 310B - page 30

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 30 01-30006-0472-200808 15 Restoring a configuration Configuring Restoring a configuration Should you need to restore the config uration file, use the following steps. T o restore the FortiGate configurat ion 1 Go to System > Maintenance > Backup & Restore . 2 Select to uplo ad the restor e f i ...

  • Fortinet 310B - page 31

    Configuring Addition al configurat ion FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 31 T o change the administrator p assword 1 Go to System > Admin > Administrators . 2 Select Change Password and enter a new p assword. 3 Select OK. Alternatively , you can also add new admin i strator users by select ing Create New , ...

  • Fortinet 310B - page 32

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 32 01-30006-0472-200808 15 Additional confi guration Configuring ...

  • Fortinet 310B - page 33

    Advanced configuration Protection profiles FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 33 Advanced configuration The FortiGate unit and the FortiOS o perating system provide a wide range of features that enable you to control netwo rk and internet traffic and pr otect your network. This chapter describes some of these opti ...

  • Fortinet 310B - page 34

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 34 01-30006-0472-200808 15 Firewall p olicies Advanced configuration The best way to begin creating your own protection pr ofile is to open a predefined profile. This way you can see how a profile is set up, and th en modify it suit your requirement s. Y ou access Protecti on profile options by going to ...

  • Fortinet 310B - page 35

    Advanced configuration Antivirus options FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 35 Configuring firewall policies T o add or edit a firewall policy go to Firewall > Policy and select Edit on an existing policy , or select Create New to add a policy . The source and des tination Interface/Zone match the firewall poli ...

  • Fortinet 310B - page 36

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 36 01-30006-0472-200808 15 AntiSpam options Advanced configuration • Graywar e - These are unsolicited commercial software programs that are installed on computer s, often without the user's consent or knowledge. Grayware progr ams are generally consider ed an annoyance, but the se programs can ca ...

  • Fortinet 310B - page 37

    Advanced configuration Web fi ltering FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 37 Banned word lists are specific wor ds that may be typically found in email. The FortiGate u nit searches f or words or patter ns in email me ssages. If m atches are found, values assigned to the words are to ta lled. If the defined thresho ...

  • Fortinet 310B - page 38

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 38 01-30006-0472-200808 15 Logging Advanced configuration T o configure content blocking, go to W eb Filter > Content Block . URL filter enables you to control additional web sites that you can block or allow . This enables you greater con trol over ce rtain URLs or sub-URLs. The Fo rtiGate unit allow ...

  • Fortinet 310B - page 39

    AMC modules Installing AMC filler units FortiGate-310B FortiOS 3.0 MR6 Install Guide 01-30006-0472-2008081 5 39 AMC modules FortiGate AMC module s enable you to ex pand your FortiGate unit an d network environment. These module s enable you to provide small p acket performance though optica l or copper t ransceivers. A h ard disk modu le enables yo ...

  • Fortinet 310B - page 40

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 40 01-30006-0472-200808 15 Removing modules AMC modules T o insert a module into a FortiGate chassis 1 Ensure the FortiGate unit is powered off before pro ceeding. 2 Remove the panel block on the FortiGate unit using the hot swa p latch. 3 Pull the latch on the module to the extend ed position. 4 Insert ...

  • Fortinet 310B - page 41

    AMC modules Using the AMC modules FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 41 Formatting the hard disk When you first inst all the ASM-S08 in the FortiGate u nit, the hard disk may not be formatted. This will result in an error in the console wh en starting up the FortiGate unit, indicating that the hard drive could not ...

  • Fortinet 310B - page 42

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 42 01-30006-0472-200808 15 Using the AMC modul es AMC modules Log configuration using the CLI Configure the FortiGate unit to log to the ASM-S08 using the CLI within the FortiAnalyzer command config log disk setting enable . For details on log configuration, see the FortiGate CLI Reference . Viewing logs ...

  • Fortinet 310B - page 43

    AMC modules Using the AMC modules FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 43 For these mu lti-mode SFP inte rfaces, SerD es is the defa ult mode. Y ou can use a CLI command to change the inte rface to operate in SGMII mode. Depending on th e type of transceivers you inst all, you need to configure the FortiGate unit or ...

  • Fortinet 310B - page 44

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 44 01-30006-0472-200808 15 Using the AMC modul es AMC modules ...

  • Fortinet 310B - page 45

    FortiGate Firmware Downloading firmware FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 45 FortiGate Firmware Fortinet periodically updates the For tiGat e firmware to include new featur es and address issues. After yo u have registered your FortiGate unit, you can download FortiGate firmware updates is available for download ...

  • Fortinet 310B - page 46

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 46 01-30006-0472-200808 15 Using the web-based manage r FortiGate Firmware T o download firmware 1 Log into the site using your user n ame and password. 2 Go to Firmware Images > FortiGate . 3 Select the most recent FortiOS version, and MR release and p atch release. 4 Locate the firmware for your For ...

  • Fortinet 310B - page 47

    FortiGate Firmware Using the web-based manager FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 47 T o revert to a previous firmware version 1 Copy the firmware image file to the managem ent computer . 2 Log into the FortiGate web- based manager . 3 Go to System > St atus . 4 Under System Information > Firmware V ersion , ...

  • Fortinet 310B - page 48

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 48 01-30006-0472-200808 15 Using the CLI FortiGate Firmware T o configure the USB Auto-Inst all 1 Go to System > Maintenance > Backup and Restore . 2 Select the blue arrow to expa nd the Advanced options. 3 Select the following: • On system restart, auto matically update FortiGate configuration f ...

  • Fortinet 310B - page 49

    FortiGate Firmware Using the CLI FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 49 5 Enter the fo llowing command to copy the firmware image from the TFTP server to the FortiGate unit: execute restore image <name_str> <tftp_ip4> Where <name_str> is the nam e of the firmware image file an d <tftp_ip4> i ...

  • Fortinet 310B - page 50

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 50 01-30006-0472-200808 15 Installing firmware from a system reboot using the CLI FortiGate Firmware 4 Make sure the FortiGate unit can connect to th e TFTP server . Y ou can use the following command to p ing the com puter runnin g the TFTP server . For example, if the TFTP serv er’s IP address is 192 ...

  • Fortinet 310B - page 51

    FortiGate Firmware Installing firmware from a system reboot using the CLI FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 51 If you are revert ing to a previou s FortiOS version, you might not be able to restore the previous configuration from the backup configuration file . T o inst all firmware from a system reboot 1 Connect ...

  • Fortinet 310B - page 52

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 52 01-30006-0472-200808 15 Installing firmware from a system reboot using the CLI FortiGate Firmware 9 T ype the address of the TFTP server and press Enter: The following message appears: Enter Local Address [192.168.1.188]: 10 T ype an IP addre ss the FortiGate unit can use to connect to the TFTP server ...

  • Fortinet 310B - page 53

    FortiGate Firmware Installing firmware from a system reboot using the CLI FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 53 T o restore configuration using the CLI 1 Log into the CLI. 2 Enter the following command to re store the configuration files: exec restore image usb <filename> The FortiGate unit responds with the ...

  • Fortinet 310B - page 54

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 54 01-30006-0472-200808 15 T esting new firmware befo re installing FortiGate Firmware T e sting new firmware before inst alling Y o u can test a new fi rmware image by installing the firmw are image from a system reboot and saving it to system memory . After completing this procedure , the FortiGate uni ...

  • Fortinet 310B - page 55

    FortiGate Firmware T esting new firmware b efore installing FortiGate-310B Forti OS 3.0 MR6 Install Guide 01-30006-0472-20080 815 55 8 T ype G to get t he new firmw are image fr om the TFTP server . The following m essage appears: Enter TFTP server address [192.168.1.168]: 9 T ype th e address of the TFTP server and pr ess Enter: The following m es ...

  • Fortinet 310B - page 56

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 56 01-30006-0472-200808 15 T esting new firmware befo re installing FortiGate Firmware ...

  • Fortinet 310B - page 57

    Index FortiGate-310B FortiOS 3.0 MR6 Install Guide 01-30006-0472-2008081 5 57 Index A adding a defa ult route 21, 24 additional resources 9 admin password 30 air flow 13 ambient te mperature 13 antispam options 36 antivirus options 35 auto-install 47 auto-install from CLI 53 B backing up 29 C certificate, security 19 CLI 19 upgrading the firmware 4 ...

  • Fortinet 310B - page 58

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 58 01-30006-0472-200808 15 Index P PADT timeout 21 password, changing 30 power off 16 PPPoE 24 protection profiles 33 R registering 7 restore 30 restoring previous firmware configuration 52 reverting firmware 46 S security certificate 19 shielded twisted pair 14 shut down 16 signatures, update 31 static ...

  • Fortinet 310B - page 59

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 59 01-30006-0472-200808 15 Index ...

  • Fortinet 310B - page 60

    FortiGate-310B FortiOS 3.0 MR6 Install Guide 60 01-30006-0472-200808 15 Index ...

  • Fortinet 310B - page 61

    www.fortinet.com ...

  • Fortinet 310B - page 62

    www.fortinet.com ...

Fabricant Fortinet Catégorie Network Card

Les documents que nous recevons du fabricant de l'appareilFortinet 310B peuvent être divisés en plusieurs groupes. Ceux-ci sont, entre autres:
- dessins techniques Fortinet
- manuels d’utilisations 310B
- fiches produit Fortinet
- dépliants
- ou étiquettes-énergie Fortinet 310B
Tous sont importants, mais les informations les plus importantes du point de vue de l'utilisation de l'appareil se trouvent dans le manuel d’utilisation Fortinet 310B.

Un groupe de documents appelé manuels d’utilisation est également divisé en types plus spécifiques, tels que: Manuels d’installation Fortinet 310B, manuels d’entretien, brefs manuels ou manuels de l’utilisateur Fortinet 310B. Selon vos besoins, vous devriez chercher le document dont vous avez besoin. Sur notre site, vous pouvez voir le manuel le plus populaire d’utilisation du produit Fortinet 310B.

Manuels d’utilsiation similaires

Manuel d’utilisation complet de l’appareil Fortinet 310B, quelle devrait-elle être?
Le manuel d’utilisation, également appelé le mode d’emploi, ou tout simplement le manuel, est un document technique destiné à aider à utiliser Fortinet 310B par les utilisateurs. Des manuels sont généralement écrits par un rédacteur technique, mais dans un langage accessible à tous les utilisateurs Fortinet 310B.

Le manuel d’utilisation complet Fortinet, devrait inclure plusieurs éléments de base. Certains d'entre eux sont moins importants, tels que: la couverture / page de titre ou pages d'auteur. Cependant, la partie restante, devrait nous fournir des informations importantes du point de vue de l'utilisateur.

1. Introduction et des conseils sur la façon d'utiliser le manuel Fortinet 310B - Au début de chaque manuel, nous devrions trouver des indices sur la façon d'utiliser le document. Il doit contenir des informations sur l'emplacement de la table des matières Fortinet 310B, FAQ ou des problèmes les plus fréquents - les points qui sont les plus souvent recherchés par les utilisateurs de chaque manuel
2. Table des matières - index de tous les conseils pour lFortinet 310B qui peuvent être trouvés dans le document courant
3. Conseils sur la façon d'utiliser les fonctions de base de l’appareil Fortinet 310B - qui devraient nous aider dans les premières étapes lors de l'utilisation Fortinet 310B
4. Troubleshooting - séquence systématique des activités qui nous aideront à diagnostiquer et ensuite résoudre les principaux problèmes de Fortinet 310B
5. FAQ - questions fréquemment posées
6. Détails du contact Informations sur l'endroit où chercher le contact avec le fabricant / service Fortinet 310B dans un pays donné, si le problème ne peut être résolu par nous-mêmes.

Avez-vous une question à propos de Fortinet 310B?

Utiliser le formulaire ci-dessous

Si vous n’avez pas résolu votre problème avec Fortinet 310B, avec l'aide du manuel que vous avez trouvé, posez une question en utilisant le formulaire ci-dessous. Si un utilisateur a eu un problème similaire avec Fortinet 310B il est probable qu’il a envie de partager la façon de le résoudre.

Réécrire le texte de l'image

Captcha
Nouvelle image

Commentaires (0)