Fortinet black logo

Cookbook

Configuring a policy to allow a local network to access Microsoft Azure services

Copy Link
Copy Doc ID 52c06fe2-eb01-11eb-97f7-00505692583a:867416
Download PDF
To configure a policy:
  1. Go to Policy & Objects > Firewall Policy and select Create New.
  2. Enter a name for the policy.
  3. In Incoming Interface, select the interface created to use an external captive portal.
  4. In Outgoing Interface, select the interface for virtual WAN.
  5. In Source:
    1. Select + to open the Select Entries window.
    2. In Address, search and select all.
    3. Select Close.
  6. In Destination:
    1. Select + to open the Select Entries window.
    2. In Internet Service, search and select Microsoft-Azure.
    3. Select Close.
  7. In Advanced pane, enable Exempt Captive Portal to exempt this policy from the captive portal.

    To make the Advanced pane visible:

    • Go to System > Feature Visibility.

    • Enable Policy Advanced Options.

    • Click Apply.

  8. Click OK.
To configure a policy:
  1. Go to Policy & Objects > Firewall Policy and select Create New.
  2. Enter a name for the policy.
  3. In Incoming Interface, select the interface created to use an external captive portal.
  4. In Outgoing Interface, select the interface for virtual WAN.
  5. In Source:
    1. Select + to open the Select Entries window.
    2. In Address, search and select all.
    3. Select Close.
  6. In Destination:
    1. Select + to open the Select Entries window.
    2. In Internet Service, search and select Microsoft-Azure.
    3. Select Close.
  7. In Advanced pane, enable Exempt Captive Portal to exempt this policy from the captive portal.

    To make the Advanced pane visible:

    • Go to System > Feature Visibility.

    • Enable Policy Advanced Options.

    • Click Apply.

  8. Click OK.