Skip to main content
A
Anonymous_User
Contributor
June 25, 2008
Question

Allow Files Transfer from one Subnet to the Other

  • June 25, 2008
  • 4 replies
  • 3112 views
Hello all, I have a FortiGate 60B Firewall with all the latest Firmware updates. I have my firewall running in Interface Mode therefore each port is a different subnet. Basically what I need to do is be able to transfer files from my desktop computer to my server. Both computers are located in the same office, they are just on different subnets and are behind the FortiGate 60B firewall. I only want my computer to able to share or transfer files to the server and nobody else. How do I accomplish this?

    4 replies

    rwpatterson
    rwpatterson
    New Member
    June 25, 2008
    Just create the policy from your PCs interface to the server' s interface. Ignore the fact you' re in the same facility.... It' s extraneous information.
    A
    Anonymous_UserAuthor
    Contributor
    June 25, 2008
    How do I create a policy from my PC interface. My PC is on the subnet with all employees desktop computer so how do I specifically create a policy from my computer to the server subnet?
    rwpatterson
    rwpatterson
    New Member
    June 25, 2008
    Source address: PC IP Source interface: Internal Destination address: server IP Detination interface: DMZ, WANx, etc. Set services, schedule, protection profile as you see fit. Action: Accept The above makes the assumption that both subnets are on different interfaces on the FGT. If they are both on the same FGT interface, then you don' t need a policy to do anything, because the FGT is out of the equation.
    A
    Anonymous_UserAuthor
    Contributor
    June 30, 2008
    ok that did it but I have one more question. Lets say I have 2 servers located on separate Subnets. Example: Web Server on the DMZ and a SQL Server on Subnet 1. I only have port 1433 open on the SQL Server for the web server to pass SQL queries too. Let' s say I have a USB External Hard drive connected to the SQL Server on Subnet 1 for backups and I also would like to backup my Webserver that' s on the DMZ to the external Hard Drive that' s connected to the SQL Server on Subnet 1. How do I Accomplish this if they both are on separate subnets?
    A
    Anonymous_UserAuthor
    Contributor
    June 25, 2008
    ok thank you that worked. Now if I want another computer to connect to that server I will need to do the samething for each PC?
    A
    Anonymous_UserAuthor
    Contributor
    June 26, 2008
    You should be able to add additional PCs to the existing policy... Create an IP Address pool and work like that. Another thing you might want to consider doing.... is if you want it even more secure... Create a IPSec or SSL VPN policy and connection from subnet to subnet. This way you have to VPN to the server in order to transfer files.... This also ensures the data moving from PC to Server is encrypted! The only downside I can see to this is speed... I have a gigabit network and when moving data across my 60B it can slow down... Keep in mind I am moving huge video files... So I decided NOT to go with my own advice. For office files and things like that its worth it.
    Terms & ConditionsAccessibility statement