Skip to main content
Bacus
Bacus
New Member
January 12, 2016
Question

Fortigate 110C Dmz

  • January 12, 2016
  • 1 reply
  • 3872 views

Hi

 

I am usinf Fortigate 110C v4.0,build0656,130211 (MR3 Patch 12). 

How can i create Dmz interface?

 

Thank you.

    1 reply

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    January 12, 2016

    I believe 110C's 8 ports are switch ports. Unless you change the mode to "interface" mode, you can split them to individual ports. But if I remember correctly that feature wasn't available with v4.0MR3. I might be mistaken though. I recommend upgrading to 5.0 or 5.2 to try.

    Bacus
    BacusAuthor
    New Member
    January 13, 2016

    Hi Toshi

    Thank you for your answer. Let me explain you what i want to do:

    I have a Cisco 2900 series router and i need to assign an ip address from one of our 16 ip address.

    One ip adress used WAN1 for general internet connection. When i try create an interface existing idle port as Dmz and assign an ip from our block it going conflict because ip address is in same subnet as the WAN1.

     

    It will be possible that you said in previous message?

     

    Thank you.

     

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    January 13, 2016

    Even Cisco routers wouldn't allow you to do that. No, it's not possible. DMZ should have a separate subnet from any others. Then you need to create a set of policies to allow access from inside and outside. Outside access needs to be nated.

    Terms & ConditionsAccessibility statement