Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
bkarl
Staff
Staff

Created on ‎02-26-2023 09:57 PM Edited on ‎09-20-2023 06:54 AM By Community Manager

Article Id 247203

Technical Tip: Allow connection to reach the Internet by a second interface

Description This article discusses the Deployment Guide Configuration for FortiGate-VM on OCI in order to reach the internet by port2 to achieve the requirements of the deployment for network production.
Scope FortiGate-VM.
Solution

Make Sure to follow the Deployment Guide to create the VM-Instance:

 

  1. Once the FortiGate Interfaces are already configured, confirm it is possible to reach the internet by port As a configuration Guide request is needed to reach the internet by port 2, port 1 will be only for management.

 

If the port1 is receiving IP addressing DHCP:

By default, there is a default static route that has an administrative distance with a value of 5.

 

So it will run first.

 

bkarl_0-1677368960119.png

 

  1.  In order to avoid losing the management connection with the FortiGate-M, configure a default route 0.0.0.0 0.0.0.0 with an outgoing interface port2 and change the administrative distance to 5.

 

config static-route

    edit 1

        set distance 5

    end

 

  1. After that, go to interface port1 and change the priority from 1 to 5:

 

config sys interface

    edit port1

        set priority 5

  end

 

bkarl_1-1677369030096.png

 

bkarl_2-1677369038813.png

 

bkarl_2-1677369038813.png

 

258
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.