I am a new systems admin for my company and am tasked with the project of splitting a sister company from our network. The sister company has a fortigate directed to our network and need to make adjustments to take it off our network and allow it to work independently/ for their own network. Is there a previous post on the subject or can someone point me in the right direction for the steps involved in taking that fortigate off our network? Thank you.
Easiest way to achieve that, is to find the cable/fiber that connects the remote device to your device and unplug it.
Second easiest way, find on the local router/firewall which is the interface that leads to the remote networks and disable/shut it down.
Hi @BsuarezQTStools ,
I guess what "taking that fortigate off our network" means for you is to deny the traffic from the FortiGate to access your network directly.
If so, you may apply or modify a policy or access rule on the edge router/firewall device in your network to deny the traffic from the sister company.
I'm still new to administrating our Fortigates. Can you direct me to any documentation that may cover this task?
Hi @BsuarezQTStools ,
Let's say, your sister company is connected to port1 on your FGT, you may create firewall policies from port1 to any possible interfaces with action Deny.
Please check the FortiGate Admin Guide for instructions on creating a firewall policy.
https://docs.fortinet.com/document/fortigate/7.4.7/administration-guide/656084/firewall-policy
You did not share your FGT firmware version, so I use the latest 7.4.7 Admin Guide.
but yes. the sister company needs to communicate on it's own and not reach back to the main company network.
User | Count |
---|---|
2101 | |
1185 | |
770 | |
451 | |
344 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.