1. interface
pppoe - want distance priority
vlan - wireless
unifi password
if have phone eg DVG5004S can't bypass tm wireless router. must DMZ to wan fortigate ip.
wan fortigate ip using private ip. Can't use wireless router
2. dns
fortiddns
3. static route
policy route
2. system
2.1 add itwin admin
2.2 firmware - start from lowest version
2.3 register fortiguard
3. policy
want user authentication
3.2 add all subnet, group ip address
3.3 security profile, app and web
3.4 vip
4. vpn
4.1 request info ipsec , gw ip, local and dest address, phase1 , phase 2
4.2 sslvpn - group user
4.3 sslvpn portal must change ip address if required
5. user
5.1 user and group
5.
2. user authentication
No comments:
Post a Comment