Fortinet black logo

Cookbook

Creating a policy

Copy Link
Copy Doc ID a4a06ec3-12a7-11e9-b86b-00505692583a:667291
Download PDF

Creating a policy

Note

Some FortiGate models include an IPv4 security policy in the default configuration. If you have one of these models, edit it to include the logging options shown below, then proceed to the results section.

  1. To create a new policy, go to Policy & Objects > IPv4 Policy. Give the policy a Name that indicates that the policy will be for traffic to the Internet (in the example, Internet).
  2. Set the Incoming Interface to lan and the Outgoing Interface to wan1. Set Source, Destination Address, Schedule, and Services, as required.

  3. Ensure the Action is set to ACCEPT.

  4. Turn on NAT and select Use Outgoing Interface Address.

  5. Scroll down to view the Logging Options. To view the results later, enable Log Allowed Traffic and select All Sessions.

Creating a policy

Note

Some FortiGate models include an IPv4 security policy in the default configuration. If you have one of these models, edit it to include the logging options shown below, then proceed to the results section.

  1. To create a new policy, go to Policy & Objects > IPv4 Policy. Give the policy a Name that indicates that the policy will be for traffic to the Internet (in the example, Internet).
  2. Set the Incoming Interface to lan and the Outgoing Interface to wan1. Set Source, Destination Address, Schedule, and Services, as required.

  3. Ensure the Action is set to ACCEPT.

  4. Turn on NAT and select Use Outgoing Interface Address.

  5. Scroll down to view the Logging Options. To view the results later, enable Log Allowed Traffic and select All Sessions.