Skip to main content
DanieleS99
DanieleS99
Explorer
May 24, 2022
Solved

Fortigate return to NAT mode from transparent mode

  • May 24, 2022
  • 3 replies
  • 7874 views

Hi,

If I wanted to return to NAT mode after configure the Fortigate in transparent mode with firewall policies, security policies, etc.. What are the steps?

Obviously remove the commands of transparent mode and assign ip addresses on interfaces. Other things?

 

Thanks

Best answer by hrahuman_FTNT
Hi,
 
Use the following procedure to switch the FortiGate unit from Transparent mode to
NAT/Route mode. When the FortiGate unit has changed to NAT/Route mode its
configuration resets to NAT/Route mode factory defaults.
1) Go to System > Status.
2)Select Change to NAT Mode.
3)Select NAT/Route in the operation mode list.
4)Select OK.
The FortiGate unit changes operation mode.
5)To reconnect to the web-based manager you must connect to the interface configured
Access through default for management access.
 
-Habeeb

3 replies

hrahuman_FTNT
Staff & Editor
hrahuman_FTNTAnswer
Staff & Editor
May 24, 2022
Hi,
 
Use the following procedure to switch the FortiGate unit from Transparent mode to
NAT/Route mode. When the FortiGate unit has changed to NAT/Route mode its
configuration resets to NAT/Route mode factory defaults.
1) Go to System > Status.
2)Select Change to NAT Mode.
3)Select NAT/Route in the operation mode list.
4)Select OK.
The FortiGate unit changes operation mode.
5)To reconnect to the web-based manager you must connect to the interface configured
Access through default for management access.
 
-Habeeb
Chang_Voyage
Chang_Voyage
New Member
December 9, 2023

May it be possible set the Fortigate 110C to Route Mode by CLI?

ede_pfau
SuperUser
ede_pfau
SuperUser
December 10, 2023

@DanielleS99: the keyword in Habeeb's post is "factory reset"!

BEWARE!

 

That is, you will lose your current config. IF FortiOS doesn't ask you for a management IP when enabling Route mode, then it will default to 192.168.1.99/24 on port "mgmt" or "port1", depending on model.

Tip: Log in via the console port to do this. You will retain connectivity, can look up the correct management port ("get sys int") and you could change the IP immediately if convenient.

Terms & ConditionsAccessibility statement