Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiGate CNF Administration Guide

    Editing or viewing a policy set

    Editing or viewing a policy set

    In the Policy Sets table, select a policy set and click Edit to view or edit the following policy set details:

    For more detailed information about FortiGate policies, see Policies in the FortiGate Administration Guide.

    Policy Set

    The following details are displayed in the Policy Set form.

    Item Description
    Name The unique name of the policy set. This field is editable.

    Cloud Platform

    Displays the cloud platform for this policy set. This field is not editable.

    Policies

    In the Policies page, select a policy and click Edit to view or edit the policy details. Click Delete to remove the policy from the policy set. Click New to add a new policy.

    The following details are displayed in the Policies form. All fields are editable.

    Item Description
    Name The unique name of the policy.
    Source The source addresses, address groups, or internet service. For more information, see Addresses and Internet service database objects.
    Destination The destination addresses or address groups. For more information, see Addresses and Internet service database objects.
    Service The service or service group this policy applies to. For more information, see Services.
    Action The action taken when traffic matches this policy, either ACCEPT or DENY.
    Security Profiles The security profiles applied to this policy. For more information, see Security profiles.

    Log Allowed Traffic

    Enable or disable logging of allowed traffic.

    The available logging options are:

    • Security Event

    • All Sessions

    Generate Logs When Session Start

    Enable or disable generation of logs when a session starts.

    Enable This Policy

    Enable or disable this policy.

    CNF Associations

    The CNF Associations table displays a read-only list of the FortiGate CNF instances where this policy set is installed.

    Previous
    Next

    Editing or viewing a policy set

    Editing or viewing a policy set

    In the Policy Sets table, select a policy set and click Edit to view or edit the following policy set details:

    For more detailed information about FortiGate policies, see Policies in the FortiGate Administration Guide.

    Policy Set

    The following details are displayed in the Policy Set form.

    Item Description
    Name The unique name of the policy set. This field is editable.

    Cloud Platform

    Displays the cloud platform for this policy set. This field is not editable.

    Policies

    In the Policies page, select a policy and click Edit to view or edit the policy details. Click Delete to remove the policy from the policy set. Click New to add a new policy.

    The following details are displayed in the Policies form. All fields are editable.

    Item Description
    Name The unique name of the policy.
    Source The source addresses, address groups, or internet service. For more information, see Addresses and Internet service database objects.
    Destination The destination addresses or address groups. For more information, see Addresses and Internet service database objects.
    Service The service or service group this policy applies to. For more information, see Services.
    Action The action taken when traffic matches this policy, either ACCEPT or DENY.
    Security Profiles The security profiles applied to this policy. For more information, see Security profiles.

    Log Allowed Traffic

    Enable or disable logging of allowed traffic.

    The available logging options are:

    • Security Event

    • All Sessions

    Generate Logs When Session Start

    Enable or disable generation of logs when a session starts.

    Enable This Policy

    Enable or disable this policy.

    CNF Associations

    The CNF Associations table displays a read-only list of the FortiGate CNF instances where this policy set is installed.

    Previous
    Next