How to configure LAN, VLAN, DHCP & DNS on FortiGate Firewall (Part 3)
ฝัง
- เผยแพร่เมื่อ 9 มิ.ย. 2024
- 👉 In this video, I will show you step by step on how to configure LAN, VLAN, DHCP (DHCP Pool, DHCP leased time) and DNS using your internal or public DNS.
⌚ Timestamps
Introduction: 0:00
FortiGate Interfaces: 0:25
Configure LAN on FortiGate: 2:01
FortiGate administrative access: 3:55
Configure DHCP on FortiGate firewall: 4:15
Configure DNS server on FortiGate firewall: 5:02
Configure DHCP leased time: 5:52
How to Configure VLAN on FortiGate firewall: 8:38
#fortigate #lan #vlan #dchp #dns #firewall #configure #configuration #configurationmanagement #tutorial #tutorials #training #basic #basicconfiguration #beginner #beginners #howto #howtoconfigure #stepbystep #version7 #version #latest - วิทยาศาสตร์และเทคโนโลยี
you explained very well.Thanks
Really clear. Thank you
very informative galing nag pagkakadali😊
Thank you so much for your content.
Nice Explanation
Amazing content,
This is what exactly i was looking for..
Thank you very much.
Glad it was helpful!
Thank you so much for the effort. Nice content.
My pleasure!
Thx for the video
Very very helpful i subscriber you channel. Thanks yo so much
Thanks and welcome
Me tira uma duvida sobre o DHCP Server? Eu tenho um servidor onde as VM's dele apontam para meu servidor de ADDS, porém não achei nos reservados a opção de setar o dns para aquela máquina, como eu faço? Obs: No PfSense eu conseguia fazer isso, por máquina, no Fortigate não achei como.
about the administrative access in which case we should check the https,ssh and Ping etc option and which case we should not check need explaination
hi there;
1. You can enable HTTPS and ping only on the internet facing interface (WAN Interface). Best practice not to enable/allow SSH & Telnet on WAN Interfaces. HTTPS for management and ping for troubleshooting purposes.
2. For better security, you can disable HTTPS on WAN Interfaces and if you want to access the device from the internet then use SSL VPN. You want more security? enable 2FA (two factor authentication), by default, each FortiGate have 2 free Forti tokens.
3. For LAN interfaces, you can enable HTTPS & SSH if you prefer but don't ever enable telnet or HTTP.
@@IgoroTech-Official thank you but can you explain it to me with simple word? its still not clear to me
HTTPS is for you to manage the FortiGate through web/browser. If you have no plan to access the fortigate from the internet then no need for you to enable the HTTPS.
SSH is for you to manage the FortiGate through CLI using putty or other terminal emulator, its not recommended to enable on WAN interfaces for security purposes.
For you to manage the Fortigate you need to enable SSH or HTTPS. you can enable it on LAN interface but not on WAN interfaces for better security.
Hi what if my DHCP is from our Access Controllers how will I do that?
hi there, in that case, you need to configure the IP address statically but make sure to use an unused IP address and remember to configure the default static route as well.
@@IgoroTech-Official thank you by the way what should I aggregated or lan then will add the vlan
@@norbertopadiernos8240 it depends on the requirements or what you want to achieve. If you are planning to configure multiple LANs and as long as you have enough LAN ports then no need to configure VLANS, you can simply configure different subnets for each port (diff port = diff switch) and then manage it thru the policies. In this way, you can have 1GB output for each network. However, if you plan to connect to 1 switch (distri/CS) then you need to configure the VLAN's. Additionally, you can configure link aggregate, or 1 port for each VLAN. Again, it depends on the requirements and each net admin has each different technique.
So i literally cant do any of this on the evaluation license ....
hi, for the versions 7.2 and above yes, but for the older versions you can. however, the older versions only valid for 30 days.
yeah same problem here. it sucks to work on evaluation license and its hard to learn anything.