Hi. Is it possible to configure the system for FG-60E so that in transparent mode it can download signatures for security services. FG-60E would be between the optical modem (also in transparent mode) and another main firewall (NGFW). In this other NGFW there is the IP address of the WAN gateway to the Internet.
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
You got it!
Use wan2 with L3 configuration as admin interface, you can connect it into your customer LAN.
Best regards
No, you need at least one IP for internet connection for updates,
Maybe if you use 3rd port connected to LAN and receive internet from NGFW.
Also, in your architecture you lost visibility of internal network traffic, you only see traffic from your WAN IP.
Better place for this scenario is between NGFW and LAN.
I know that the solution you suggested is the most convenient, but my main NGFW already supports LAN's, WLAN and 3 access points, all connected to 6 LAN interfaces. Would configuring a second WAN in FG-60E (different IP address) allow the FG-60E to contact license servers? I mean WAN1 in transparent mode with LAN1 and WAN2 external IP to the Internet.
You got it!
Use wan2 with L3 configuration as admin interface, you can connect it into your customer LAN.
Best regards
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.