Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    6.4.11
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.0.0
    5.6.0
    5.4.0
    5.2.0
    5.0.0

    config firewall addrgrp

    config firewall addrgrp

    Configure IPv4 address groups.

    config firewall addrgrp
    Description: Configure IPv4 address groups.
    edit <name>
        set allow-routing [enable|disable]
        set color {integer}
        set comment {var-string}
        set exclude [enable|disable]
        set exclude-member <name1>, <name2>, ...
        set fabric-object [enable|disable]
        set member <name1>, <name2>, ...
        set name {string}
        config tagging
            Description: Config object tagging.
            edit <name>
                set name {string}
                set category {string}
                set tags <name1>, <name2>, ...
            next
        end
        set type [default|folder]
        set uuid {uuid}
    next
end

    config firewall addrgrp

    Parameter

    Description

    Type

    Size

    Default

    allow-routing

    Enable/disable use of this group in the static route configuration.

    option

    -

    disable

    Option

    Description

    enable

    Enable use of this group in the static route configuration.

    disable

    Disable use of this group in the static route configuration.

    color

    Color of icon on the GUI.

    integer

    Minimum value: 0 Maximum value: 32

    0

    comment

    Comment.

    var-string

    Not Specified

    exclude

    Enable/disable address exclusion.

    option

    -

    disable

    Option

    Description

    enable

    Enable address exclusion.

    disable

    Disable address exclusion.

    exclude-member <name>

    Address exclusion member.

    Address name.

    string

    Maximum length: 79

    fabric-object

    Security Fabric global object setting.

    option

    -

    disable

    Option

    Description

    enable

    Object is set as a security fabric-wide global object.

    disable

    Object is local to this security fabric member.

    member <name>

    Address objects contained within the group.

    Address name.

    string

    Maximum length: 79

    name

    Address group name.

    string

    Not Specified

    type

    Address group type.

    option

    -

    default

    Option

    Description

    default

    Default address group type (address may belong to multiple groups).

    folder

    Address folder group (members may not belong to any other group).

    uuid

    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

    uuid

    Not Specified

    00000000-0000-0000-0000-000000000000

    config tagging

    Parameter

    Description

    Type

    Size

    Default

    name

    Tagging entry name.

    string

    Not Specified

    category

    Tag category.

    string

    Not Specified

    tags <name>

    Tags.

    Tag name.

    string

    Maximum length: 79

    Previous
    Next

    config firewall addrgrp

    config firewall addrgrp

    Configure IPv4 address groups.

    config firewall addrgrp
    Description: Configure IPv4 address groups.
    edit <name>
        set allow-routing [enable|disable]
        set color {integer}
        set comment {var-string}
        set exclude [enable|disable]
        set exclude-member <name1>, <name2>, ...
        set fabric-object [enable|disable]
        set member <name1>, <name2>, ...
        set name {string}
        config tagging
            Description: Config object tagging.
            edit <name>
                set name {string}
                set category {string}
                set tags <name1>, <name2>, ...
            next
        end
        set type [default|folder]
        set uuid {uuid}
    next
end

    config firewall addrgrp

    Parameter

    Description

    Type

    Size

    Default

    allow-routing

    Enable/disable use of this group in the static route configuration.

    option

    -

    disable

    Option

    Description

    enable

    Enable use of this group in the static route configuration.

    disable

    Disable use of this group in the static route configuration.

    color

    Color of icon on the GUI.

    integer

    Minimum value: 0 Maximum value: 32

    0

    comment

    Comment.

    var-string

    Not Specified

    exclude

    Enable/disable address exclusion.

    option

    -

    disable

    Option

    Description

    enable

    Enable address exclusion.

    disable

    Disable address exclusion.

    exclude-member <name>

    Address exclusion member.

    Address name.

    string

    Maximum length: 79

    fabric-object

    Security Fabric global object setting.

    option

    -

    disable

    Option

    Description

    enable

    Object is set as a security fabric-wide global object.

    disable

    Object is local to this security fabric member.

    member <name>

    Address objects contained within the group.

    Address name.

    string

    Maximum length: 79

    name

    Address group name.

    string

    Not Specified

    type

    Address group type.

    option

    -

    default

    Option

    Description

    default

    Default address group type (address may belong to multiple groups).

    folder

    Address folder group (members may not belong to any other group).

    uuid

    Universally Unique Identifier (UUID; automatically assigned but can be manually reset).

    uuid

    Not Specified

    00000000-0000-0000-0000-000000000000

    config tagging

    Parameter

    Description

    Type

    Size

    Default

    name

    Tagging entry name.

    string

    Not Specified

    category

    Tag category.

    string

    Not Specified

    tags <name>

    Tags.

    Tag name.

    string

    Maximum length: 79

    Previous
    Next