ISP
WAN
|
|
|
FORTI-----PORT1
user default:
admin
pass: kosong
=====================
objective: menghubungkan internal LAN ke internet via fortigate.
set 2 ip
1 untuk wan
1 untuk lan
network > interfaces
^ bisa masukin address.
edit
address: manual. 172.20.121.16/255.255.255.0 !! masukin ip dr isp
^
edit
masukin ip
10.1.1.2/255.255.255.0 !! masukin ip private.
-optional: setting dhcp
set role : LAN
====================
objective: set static route untuk ke internet
network > static routes.
destination > subnet
0.0.0.0/0.0.0.0
device: wan1 !! pilih interface yang kearah internet
gateway: 172.20.121.2 !! gateway dr isp
===================
objective: set firewall policy
policy & objects > ipv4 policy
name: internet-traffic
incoming interface : lan
outgoing interface : wan1
source : all
dest : all
service: all
action: accept
nat: enable
ip pool config: use outgoing interface address
log allowed traffic : on, all traffic
=============
objective: cek traffic
portview > all sessions
=============
No comments:
Post a Comment