Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    6.0.0
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.0.0
    5.6.0
    5.4.0
    5.2.0
    5.0.0

    firewall internet-service-custom

    firewall internet-service-custom

    Use this command to create and configure custom Internet Service objects.

    config firewall internet-service-custom
    edit {name}
    # Configure custom Internet Services.
        set name {string}   Internet Service name. size[63]
        set master-service-id {integer}   Internet Service ID in the Internet Service database. range[0-4294967295] - datasource(s): firewall.internet-service.id
        set comment {string}   Comment. size[255]
        config entry
            edit {id}
            # Entries added to the Internet Service database and custom database.
                set id {integer}   Entry ID(1-255). range[0-255]
                set protocol {integer}   Integer value for the protocol type as defined by IANA (0 - 255). range[0-255]
                config port-range
                    edit {id}
                    # Port ranges in the custom entry.
                        set id {integer}   Custom entry port range ID. range[0-4294967295]
                        set start-port {integer}   Integer value for starting TCP/UDP/SCTP destination port in range (1 to 65535). range[1-65535]
                        set end-port {integer}   Integer value for ending TCP/UDP/SCTP destination port in range (1 to 65535). range[1-65535]
                    next
                config dst
                    edit {name}
                    # Destination address or address group name.
                        set name {string}   Select the destination address or address group object from available options. size[64] - datasource(s): firewall.address.name,firewall.addrgrp.name
                    next
            next
        config disable-entry
            edit {id}
            # Disable entries in the Internet Service database.
                set id {integer}   Disable entry ID. range[0-4294967295]
                set protocol {integer}   Integer value for the protocol type as defined by IANA (0 - 255). range[0-255]
                set port {integer}   Integer value for the TCP/IP port (0 - 65535). range[0-65535]
                config ip-range
                    edit {id}
                    # IP ranges in the disable entry.
                        set id {integer}   Disable entry range ID. range[0-4294967295]
                        set start-ip {ipv4 address any}   Start IP address.
                        set end-ip {ipv4 address any}   End IP address.
                    next
            next
    next
end
    Previous
    Next

    firewall internet-service-custom

    firewall internet-service-custom

    Use this command to create and configure custom Internet Service objects.

    config firewall internet-service-custom
    edit {name}
    # Configure custom Internet Services.
        set name {string}   Internet Service name. size[63]
        set master-service-id {integer}   Internet Service ID in the Internet Service database. range[0-4294967295] - datasource(s): firewall.internet-service.id
        set comment {string}   Comment. size[255]
        config entry
            edit {id}
            # Entries added to the Internet Service database and custom database.
                set id {integer}   Entry ID(1-255). range[0-255]
                set protocol {integer}   Integer value for the protocol type as defined by IANA (0 - 255). range[0-255]
                config port-range
                    edit {id}
                    # Port ranges in the custom entry.
                        set id {integer}   Custom entry port range ID. range[0-4294967295]
                        set start-port {integer}   Integer value for starting TCP/UDP/SCTP destination port in range (1 to 65535). range[1-65535]
                        set end-port {integer}   Integer value for ending TCP/UDP/SCTP destination port in range (1 to 65535). range[1-65535]
                    next
                config dst
                    edit {name}
                    # Destination address or address group name.
                        set name {string}   Select the destination address or address group object from available options. size[64] - datasource(s): firewall.address.name,firewall.addrgrp.name
                    next
            next
        config disable-entry
            edit {id}
            # Disable entries in the Internet Service database.
                set id {integer}   Disable entry ID. range[0-4294967295]
                set protocol {integer}   Integer value for the protocol type as defined by IANA (0 - 255). range[0-255]
                set port {integer}   Integer value for the TCP/IP port (0 - 65535). range[0-65535]
                config ip-range
                    edit {id}
                    # IP ranges in the disable entry.
                        set id {integer}   Disable entry range ID. range[0-4294967295]
                        set start-ip {ipv4 address any}   Start IP address.
                        set end-ip {ipv4 address any}   End IP address.
                    next
            next
    next
end
    Previous
    Next