Enabling GUI Entry on Fortigate Firewall
Fortigate Subsequent-Technology Firewalls (NGFW) run on FortiOS. There are numerous model i.e. 6.4, 6.2, 6.0, 5.6, 5.2, 5.0. These firewalls could be managed through the CLI in addition to through the GUI.
On this put up, we are going to significantly concentrate on enabling the GUI entry for an out-of-box Fortigate firewall.
You’ll be able to login to Fortigate firewall with default credentials as beneath:
Username: admin
Password: <No password>…Simply hit Enter
Step 1: Configure the port1 or the port connecting to modify with a free IP deal with in your non-public community as beneath:
- Fortinet_Lab # config system interface
- Fortinet_Lab (interface) # edit port1
- Fortinet_Lab (port1) # set ip 10.80.144.150/24
- Fortinet_Lab (port1) # set allowaccess ping http https fgfm
- ssh SSH entry.
- snmp SNMP entry.
- telnet TELNET entry.
- radius-acct RADIUS accounting entry.
- probe-response Probe entry.
- capwap CAPWAP entry.
- ftm FTM entry.
- Fortinet_Lab (port1) # set allowaccess ping http https fgfm ftm ssh >> Keep in mind to permit the https and http connection to firewall on this port. You can even permit different choices to connect with firewall however these will must be particularly allowed beneath every port the place you wish to join out of your community. For instance we’ve got allowed ping, ssh and so on on firewall to this port (port1).
- Fortinet_Lab (port1) # finish
Step 2: Confirm if the configurations beneath the port as beneath:
Fortinet_Lab # present system interface port1
config system interface
edit “port1”
set vdom “root”
set ip 10.80.144.150 255.255.255.0
set allowaccess ping https ssh http fgfm ftm
set kind bodily
set snmp-index 1
subsequent
finish
Step 3: Configure the static default route or particular route in the direction of the default gateway. In our lab topology we are going to configure the default route in the direction of the gateway as beneath:
Fortinet_Lab # config router static
Fortinet_Lab (static) # edit 1
new entry ‘1’ added
Fortinet_Lab (1) # set gateway 10.80.144.1
Fortinet_Lab (1) # set dst 0.0.0.0/0
Fortinet_Lab (1) # set system port1
Fortinet_Lab (1) # finish
Confirm the route:
Fortinet_Lab # present router static
config router static
edit 1
set gateway 10.80.144.1
set system “port1”
subsequent
finish
Fortinet_Lab #
Step 4: Execute the Ping to default Gateway IP to make sure our route in the direction of GW is working:
Keep in mind to allowaccess ping if desired on the port whose IP you’re utilizing to ping GW IP like we did permit ping on Port1.
Fortinet_Lab # execute ping 10.80.144.1
PING 10.80.144.1 (10.80.144.1): 56 information bytes
64 bytes from 10.80.144.1: icmp_seq=0 ttl=64 time=0.7 ms
64 bytes from 10.80.144.1: icmp_seq=1 ttl=64 time=0.5 ms
64 bytes from 10.80.144.1: icmp_seq=2 ttl=64 time=0.5 ms
64 bytes from 10.80.144.1: icmp_seq=3 ttl=64 time=0.4 ms
64 bytes from 10.80.144.1: icmp_seq=4 ttl=64 time=0.5 ms
— 10.80.144.1 ping statistics —
5 packets transmitted, 5 packets acquired, 0% packet loss
round-trip min/avg/max = 0.4/0.5/0.7 ms
Step 5: Attempt accessing the GUI web page for Fortinet Fortigate at https://10.80.144.150 i.e. IP given to port1 in our instance. You’re going to get a display as beneath. Login with default username and empty password right here.
Associated- Fortinet Firewall Interview Questions
