Fortinet black logo

Cookbook

Creating a policy

Copy Link
Copy Doc ID 4d801240-7ccc-11e9-81a4-00505692583a:867266
Download PDF

Creating a policy

Note

Some FortiGate models include an IPv4 security policy in the default configuration. If you have one of these models, edit it to include the logging options shown below, then proceed to the results section.

  1. To create a new policy, go to Policy & Objects > IPv4 Policy. Give the policy a Name that indicates that the policy will be for traffic to the Internet (in this example, Internet).
  2. Set the Incoming Interface to lan and the Outgoing Interface to wan1. Set Source, Destination, Schedule, and Service as required.
  3. Ensure Action is set to ACCEPT.
  4. Turn on NAT and select Use Outgoing Interface Address.

  5. Scroll down to the Logging Options section. To view the results later, enable Log Allowed Traffic and select All Sessions.

Creating a policy

Note

Some FortiGate models include an IPv4 security policy in the default configuration. If you have one of these models, edit it to include the logging options shown below, then proceed to the results section.

  1. To create a new policy, go to Policy & Objects > IPv4 Policy. Give the policy a Name that indicates that the policy will be for traffic to the Internet (in this example, Internet).
  2. Set the Incoming Interface to lan and the Outgoing Interface to wan1. Set Source, Destination, Schedule, and Service as required.
  3. Ensure Action is set to ACCEPT.
  4. Turn on NAT and select Use Outgoing Interface Address.

  5. Scroll down to the Logging Options section. To view the results later, enable Log Allowed Traffic and select All Sessions.