In this article, I will demonstrate how to transfer Fortigate Firewall from default mode (NAT) to Transparent mode. After conversion, Fortigate will control traffic without needing to configure Nat or Routing, so we can add Fortigate to the existing network without changing the network configuration.
We have the following network model:
Steps:
– Backup current configuration
– Switch Fortigate to Transparent mode
– Create Firewall policy
– Enable security features
– Connect Fortigate to network devices
Proceed with configuration:
Go to System/ Dashboard/ Status, in the System configuration section, click on backup to back up the current configuration of the device.
After backing up the configuration, in the Operation mode section, select change
Next, select Operation mode as Transparent, set management IP for Fortigate and set default gateway as Router’s address.
We see that Fortigate has switched to Transparent mode as shown below
Next, we create a Policy that allows all traffic to go from Internal to Wan
We can turn on additional security features such as Antivirus, Web filter, …
Continue to create one more Policy to allow DHCP service to go from Wan to Internal
After completing the configuration, we proceed to shutdown and reopen Fortigate
Next, we connect Fortigate to the network devices
At this point, we have completed the Transparent mode configuration Fortigategood luck.
Xem tiếp...