Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
BsuarezQTStools
New Contributor

Created on ‎01-08-2025 07:14 AM

Performing a company split and need to move a fortigate off our network

I am a new systems admin for my company and am tasked with the project of splitting a sister company from our network. The sister company has a fortigate directed to our network and need to make adjustments to take it off our network and allow it to work independently/ for their own network. Is there a previous post on the subject or can someone point me in the right direction for the steps involved in taking that fortigate off our network? Thank you.

Labels:
427
0 Kudos
5 REPLIES 5
funkylicious
SuperUser
SuperUser

Created on ‎01-08-2025 07:21 AM Edited on ‎01-08-2025 07:23 AM

Easiest way to achieve that, is to find the cable/fiber that connects the remote device to your device and unplug it.

Second easiest way, find on the local router/firewall which is the interface that leads to the remote networks and disable/shut it down.

"jack of all trades, master of none"
"jack of all trades, master of none"
418
0 Kudos
dingjerry_FTNT
Staff
Staff

Created on ‎01-08-2025 08:52 AM Edited on ‎01-08-2025 08:52 AM

Hi @BsuarezQTStools ,

 

I guess what "taking that fortigate off our network" means for you is to deny the traffic from the FortiGate to access your network directly.

 

If so, you may apply or modify a policy or access rule on the edge router/firewall device in your network to deny the traffic from the sister company.

Regards,

Jerry
393
0 Kudos
BsuarezQTStools
New Contributor
In response to dingjerry_FTNT

Created on ‎01-30-2025 06:45 AM

I'm still new to administrating our Fortigates. Can you direct me to any documentation that may cover this task?

203
0 Kudos
dingjerry_FTNT
Staff
Staff
In response to BsuarezQTStools

Created on ‎01-30-2025 07:04 AM

Hi @BsuarezQTStools ,

 

Let's say, your sister company is connected to port1 on your FGT, you may create firewall policies from port1 to any possible interfaces with action Deny.

 

Please check the FortiGate Admin Guide for instructions on creating a firewall policy.

 

https://docs.fortinet.com/document/fortigate/7.4.7/administration-guide/656084/firewall-policy

 

You did not share your FGT firmware version, so I use the latest 7.4.7 Admin Guide.

 

 

Regards,

Jerry
187
0 Kudos
BsuarezQTStools
New Contributor
In response to dingjerry_FTNT

Created on ‎01-30-2025 06:49 AM

but yes. the sister company needs to communicate on it's own and not reach back to the main company network.

199
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.