Fortinet Document Library

Version:

Version:

Version:


Table of Contents

Cookbook

Download PDF
Copy Link

Controlling access from branch networks

Create firewall policies to allow users on the branch office networks to access the data center networks. Security profiles can be enabled on these firewall policies to inspect layer 7 traffic.

Policies to allow traffic from the branch office to the data center networks:

  • Source interface: Internal interface
  • Destination interface: SD-WAN interface
  • Source Address: Branch networks
  • Destination Address: Data center networks
  • Action: Accept
  • Schedule: Always (or define a more restrictive schedule)
  • Service: Allowed services

Policies to allow traffic from the data center to the branch networks:

  • Source interface: SD-WAN interface
  • Destination interface: Internal interface
  • Source Address: Data center networks
  • Destination Address: Branch networks
  • Action: Accept
  • Schedule: Always (or define a more restrictive schedule)
  • Service: Allowed Services

Controlling access from branch networks

Create firewall policies to allow users on the branch office networks to access the data center networks. Security profiles can be enabled on these firewall policies to inspect layer 7 traffic.

Policies to allow traffic from the branch office to the data center networks:

  • Source interface: Internal interface
  • Destination interface: SD-WAN interface
  • Source Address: Branch networks
  • Destination Address: Data center networks
  • Action: Accept
  • Schedule: Always (or define a more restrictive schedule)
  • Service: Allowed services

Policies to allow traffic from the data center to the branch networks:

  • Source interface: SD-WAN interface
  • Destination interface: Internal interface
  • Source Address: Data center networks
  • Destination Address: Branch networks
  • Action: Accept
  • Schedule: Always (or define a more restrictive schedule)
  • Service: Allowed Services