FortiManager without Internet connectivity as a local FDN server

Forum|Forum|7 years ago
November 28, 2018
1 reply
4589 views

Hi

The client requested to isolate fortimanager and firewalls in a private network with no internet access, so the licenses and packages updates must be downloaded offline.

I found below guide document, but there is something which is not clear (the webfilter and anti-spam packages); I didn't find these packages in fortinet portal, and in the document they stated to get them from a fortimanager device which have internet access!!

https://help.fortinet.com/fos50hlp/56/Content/FortiOS/fortigate-system-administration/Central%20Management/fortigate-licensing-isolated/Licensing_Config_FMG_No_Connectivity_Local_FDN.htm

Can you clear this point please...

Thanks

chall_FTNT

Staff

Yes, if the FortiManager itself is truly isolated from the Internet, it can only provide AV & IPS updates. For it to also provide WebFiltering (this database is large & changing constantly), it needs to at least proxy its queries through another FortiManager.

myasinAuthor

New Member

Then can we export these files from internet connected fortigate firewall instead of fortimanager?

If yes, then how to?

Thanks

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded