Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
henrypool
New Contributor

Created on ‎07-16-2018 06:15 AM

Understanding "Default mapping" function/purpose?

Hello. I am trying to understand the function or purpose of the "default mapping" when editing dynamic zones.

I can not find any info about it online nor even in the Fortimanager's admin guide. 

I thought that if I added some interface names then all the matching interfaces would be assigned to this zone. For example see the screenshot:

This would be useful if I had several Fortigates in the same ADOM and this way I could have all Fortigates' wan interfaces assigned to the WAN_INTERFACES zone at once. Or do I have a completely wrong idea? 

It would be very helpful if someone explained the purpose of the "default mapping". Thank you!

Preview file
18 KB
2964
0 Kudos
1 REPLY 1
chall_FTNT
Staff
Staff

Created on ‎07-16-2018 04:59 PM

If you only use "default mapping" for that zone as per your example, then when installing a policy package referencing that zone, the zone that will be pushed to each managed FortiGate will be wan1 & wan2.

 

Per-device mapping then overrides that default behavior for select FortiGates.  This is useful if you have 1 or more FortiGates which include different interfaces in that zone ... ex, port1 & port2.

Chris Hall
Fortinet Technical Support
1195
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.