FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
tahmadov
Staff
Staff
Article Id 191941

Description

 

This article describes how to enable the configuration of policies with multiple source/destination interfaces or 'any' through GUI and CLI.

Useful Links:
Feature visibility

Solution

 
To enable the feature through the GUI:
 
Go to System -> Feature Visibility and, under the Additional Features, allow the Multiple Interface Policies and then select Apply.
 
Stephen_G_0-1725281557057.png
 
To enable the feature through the CLI:
 
config system settings
set gui-multiple-interface-policy enable
end
 
After enabling the feature, adding multiple interfaces or 'any' in a firewall policy on the GUI is allowed.
 
Stephen_G_1-1725281610412.png


Note: On FortiOS 7.0.x, 7.2.x, and older: putting multiple incoming/outgoing interfaces or using 'any' interface will cause the 'Interface Pair View' to be greyed out as shown below. 

 

IPV.PNG

 

Related articles: