FG-60E in transparent mode

kriu · ‎10-25-2024

Hi. Is it possible to configure the system for FG-60E so that in transparent mode it can download signatures for security services. FG-60E would be between the optical modem (also in transparent mode) and another main firewall (NGFW). In this other NGFW there is the IP address of the WAN gateway to the Internet.

jdelafuente_FTNT · ‎10-26-2024

You got it!

Use wan2 with L3 configuration as admin interface, you can connect it into your customer LAN.

Best regards

Jonathan De La Fuente | LATAM TAC Engineer

View solution in original post

jdelafuente_FTNT · ‎10-25-2024

No, you need at least one IP for internet connection for updates,
Maybe if you use 3rd port connected to LAN and receive internet from NGFW.
Also, in your architecture you lost visibility of internal network traffic, you only see traffic from your WAN IP.
Better place for this scenario is between NGFW and LAN.

Jonathan De La Fuente | LATAM TAC Engineer

kriu · ‎10-26-2024

I know that the solution you suggested is the most convenient, but my main NGFW already supports LAN's, WLAN and 3 access points, all connected to 6 LAN interfaces. Would configuring a second WAN in FG-60E (different IP address) allow the FG-60E to contact license servers? I mean WAN1 in transparent mode with LAN1 and WAN2 external IP to the Internet.

jdelafuente_FTNT · ‎10-26-2024

You got it!

Use wan2 with L3 configuration as admin interface, you can connect it into your customer LAN.

Best regards

Jonathan De La Fuente | LATAM TAC Engineer

FG-60E in transparent mode

Nominate a Forum Post for Knowledge Article Creation