Created on 06-05-2015 02:47 AM Edited on 07-29-2024 03:05 PM By Jean-Philippe_P
Description
Solution
This step has to be configured from the CLI.
config firewall local-in-policy
edit 1
set intf "wan1" <----- External interface.
set srcaddr "all" <----- Source.
set dstaddr "all" <----- Destination.
set action deny <----- Action.
set service "Port 8000" <----- Custom Service created in step 1.
set schedule "always"
set status enable
end
To verify the settings, from the CLI type:
config firewall local-in-policy
show full
This policy cannot be checked from the WEB GUI, only from the CLI.
Starting from FortiOS 7.6.0, it is possible to create the same policy from GUI as well.
Check the following article for creating local in policies from GUI:
Technical Tip: Creating a Local-In policy (IPv4 and IPv6) on GUI
Related Articles:
Troubleshooting Tip: FortiGate session table information
Technical Tip: Disabling VoIP Inspection
Technical Tip: Enable and disable FortiGate system session helpers
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.