FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
gcortes1
Staff
Staff

Description

This articles shows important notes for the use of characters and symbols.


Solution
Naming Rules and Restrictions:

The following are the specific rules for the FortiGate.

Duplicate Name Issues:

- A VLAN cannot have the same name as a physical interface.
- An Address must not have the same name as an Address Group.
- An Address or Address Group must not have the same name as a Virtual IP Address.
- A Service cannot have the same name as a Service Group.
- A VLAN must not have the same name as a VDOM.
- A VLAN or VDOM must not have the same name as a Zone.

Character Restrictions:

A name can contain numbers (0-9), uppercase and lowercase letters (A-Z, a-z), spaces, and the special characters - and _. Other characters are not allowed

The special characters < > ( ) # " ' are allowed only in the following fields:

- Passwords
- Replacement message
- Firewall policy description
- IPS customized signature
- Antivirus blocked file pattern
- Web Filter banned word
- Spam filter banned word
- Interface PPPoE client user name
- Modem dialup account user name
- Modem dialup telephone number.

Note: To avoid to use spaces in a name try using the "-" or "_".
There are a few name fields were it is not an issue but most of them will trigger serious and unpredictable issues if there is a space in the name field of the object.


Length of Fields Restrictions:
Most name fields accept 35 characters. The exceptions are:

Field

 

Characters allowed

 

12

VLAN name

15

RADIUS server secret

15

LDAP server common name identifier

15

Admin user password

32

Schedule names

32

Local certificate email

60

Modem dialup account user name, password, phone number fields

63

Firewall policy comments

63

RADIUS, LDAP server domain name

63

IPSec phase 1 local/peer ID

63

IPS custom signature name

63

Spam Filter MIME header name

63

Antivirus file block pattern

63

Local certificate organizational unit, organization, locality, state/province fields

127

IPSec phase 1 pre-shared key or certificate name

127

Web Filter banned word, URL, URL exempt, Pattern fields

127

Spam Filter RBL server name, email address, MIME header body

127

LDAP server distinguished name

128

IPS custom signature

511

Replacement message

 

1024

 

Contributors