Browse
Fortinet Community
Help
Sign In
Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive
Autumn 2024 badge!
Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
Forums
Support Forum
Knowledge Base
Customer Service
Internal Article Nominations
FortiGate
FortiClient
FortiAP
FortiAnalyzer
FortiADC
FortiAuthenticator
FortiBridge
FortiCache
FortiCarrier
FortiCASB
FortiConnect
FortiConverter
FortiCNP
FortiDAST
FortiDDoS
FortiDB
FortiDNS
FortiDeceptor
FortiDLP
FortiDevSec
FortiDirector
FortiEDR
FortiExtender
FortiGuard
FortiGate Cloud
FortiHypervisor
FortiInsight
FortiIsolator
FortiMail
FortiMonitor
FortiManager
FortiNAC
FortiNAC-F
FortiNDR (on-premise)
FortiNDRCloud
FortiPAM
FortiPhish
FortiPortal
FortiProxy
FortiRecon
FortiRecorder
FortiSRA
FortiSandbox
FortiSASE
FortiScan
FortiSIEM
FortiSOAR
FortiSwitch
FortiTester
FortiToken
FortiVoice
FortiWAN
FortiWeb
FortiWebCloud
Lacework
Wireless Controller
RMA Information and Announcements
FortiCloud Products
ZTNA
4D Documents
Community Groups
Agora
Engage Services
The EPSP Platform
The ETSP Platform
Finland
FortiGate-VM on Azure
Discussions & Onboarding Information
Technical Learning
FortiGate-VM on AWS
Discussions & Onboarding Information
Technical Learning
FortiGate CNF (All Marketplaces)
Getting Started Resources
Technical Learning
FortiWeb Cloud (All Marketplaces)
Getting Started Resources
Technical Learning
Fortinet for SAP
Discussions
Technical Learning
Knowledge Base
Idea Exchange
Events
FortiSIEM
Discussions
Blog
FortiSOAR
Discussions
Announcements
Idea Exchange
KCS
Lacework
Live security workshops
Super User
Blogs
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Fortinet Community
Knowledge Base
FortiGate
Technical Tip: Prevent unknown user's access to th...
Options
Subscribe to RSS Feed
Mark as New
Mark as Read
Bookmark
Subscribe
Printer Friendly Page
Report Inappropriate Content
bmedikonda
Staff
Created on
09-05-2024
11:47 PM
Article Id
339472
Technical Tip: Prevent unknown user's access to the network
Description
This article describes how to prevent unknown user's access to the network.
Scope
FortiGate.
Solution
Change the port numbers for HTTPS (443) and SSH (22) from the default ones:
How to change the default ports
Configure the maximum log-in attempts and lockout period:
Configuring the maximum log in attempts and lockout period
Consider configuring trusted hosts to limit access to the FortiGate:
Configuring Administrator access to a FortiGate unit using Trusted Hosts
Configure local-in policy to restrict unauthorized login attempts to administrative access of FortiGate:
Use local-in policy to restrict unauthorized login attempts to administrative access of FortiGate
Use geolocation address object on the source address to allow/block specific countries:
How to block by country or geolocation
Contributors
bmedikonda
Anthony_E
