Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
vpoluri
Staff
Staff

Created on ‎09-05-2017 09:18 AM Edited on ‎10-23-2024 11:52 PM By Community Manager

Article Id 193506

Technical Tip: How to configure multiple interfaces on a firewall policy (GUI)

Description

 

By default on the firewall policy GUI, multiple interfaces can not be set. This article describes how to enable this feature.
 
Scope
 
FortiGate.


Solution

 

This feature can be enabled by CLI.
 
config  system  settings
    set  gui-multiple-interface-policy enable
end

It can also be enabled in the GUI by going to System -> Feature, selecting the page, and toggling 'Multiple Interface Policies'.
 

Once enabled go to the firewall policy and add multiple interfaces as required.

 

Untitled2_1.gif

 

Note:

On versions before 7.4, using multiple incoming/outgoing interfaces in the firewall policy will cause the 'Interface Pair View' to be greyed out as shown below. Starting from FortiOS 7.4, 'Interface Pair View' will not be greyed out.

 

policy view.PNG

 

Related articles:

Technical Tip: Firewall policy views

Technical Tip: How to allow the configuration of policies with multiple source/destination interface...

Technical Note: Cannot create firewall policies with interface 'any'

16600
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.