Fortinet black logo

SD-WAN Orchestrator 6.4.1 r6 Administration Guide

Creating new DMZ settings

6.4.5
Copy Link
Copy Doc ID b876a8df-87f7-11eb-9995-00505692583a:539584
Download PDF

Creating new DMZ settings

When creating a profile, you can also create new DMZ settings.

To create new DMZ settings:
  1. Go to Configuration > Profile.

    The list of profiles is displayed.

  2. Create a new profile, or open a profile for updating.

    The Profile <name> dialog box is displayed.

  3. Click the Network tab.

    The Network pane is displayed. For a description of the options, see Network tab.

  4. Expand the DMZ section, and click +Create New.

    The DMZ dialog box is displayed.

    Option

    Description

    Name

    Type a name for the interface.

    Port Type

    Select the type of port. Choose from VLAN or AGGREGATE.

    Physical Port

    Available when Port Type is set to VLAN.

    Select the port number.

    VLAN ID

    Available when Port Type is set to VLAN.

    Type an ID for the VLAN.

    Allow Overlap Between Devices

    Toggle on to allow overlap between devices and specify the IP address of the other device.

    IP Address

    Available when Allow Overlap Between Devices is toggled on.

    Type the IP address of the device that can be overlapped.

    IP Auto Assign

    Available when Allow Overlap Between Devices is toggled off.

    Toggle on to allow automatic IP assignment from a pool of IP addresses.

    IP Pool

    Available when IP Auto Assign is toggled on.

    Select the pool of IP addresses to use for automatic assignment.

    If you have not yet created a pool of IP addresses, you can create one. In the dropdown list, click Create. See also Creating intranet IP pools.

    Subnet Mask Length

    Type the prefix of the IP address or subnet mask.

    DHCP Mode

    Specify whether to use DHCP for automatic IP assignment. Select one of the following options:

    • None - DHCP is not used.
    • Server - Enable DHCP server.
    • Relay - Enable DHCP relay agent.

    DHCP

    When DHCP Mode is set to Server, select a server from shared resources. See Creating DHCP servers.

    When DHCP Mode is set to Relay, select a relay agent from shared resources. See Creating DHCP relay agents.

    DHCP Pool Auto Assign

    Available when DHCP Mode is set to Server.

    Toggle on to enable and specify the pool size.

    Access Types

    Select the types of access to allow on the interface.

  5. Complete the options, and click OK.

    The DMZ setting is created.

  6. If you set Port Type to AGGREGATE, open the DMZ settings for editing, select interface members, and click OK.

    Interface members are added to the DMZ settings.

Creating new DMZ settings

When creating a profile, you can also create new DMZ settings.

To create new DMZ settings:
  1. Go to Configuration > Profile.

    The list of profiles is displayed.

  2. Create a new profile, or open a profile for updating.

    The Profile <name> dialog box is displayed.

  3. Click the Network tab.

    The Network pane is displayed. For a description of the options, see Network tab.

  4. Expand the DMZ section, and click +Create New.

    The DMZ dialog box is displayed.

    Option

    Description

    Name

    Type a name for the interface.

    Port Type

    Select the type of port. Choose from VLAN or AGGREGATE.

    Physical Port

    Available when Port Type is set to VLAN.

    Select the port number.

    VLAN ID

    Available when Port Type is set to VLAN.

    Type an ID for the VLAN.

    Allow Overlap Between Devices

    Toggle on to allow overlap between devices and specify the IP address of the other device.

    IP Address

    Available when Allow Overlap Between Devices is toggled on.

    Type the IP address of the device that can be overlapped.

    IP Auto Assign

    Available when Allow Overlap Between Devices is toggled off.

    Toggle on to allow automatic IP assignment from a pool of IP addresses.

    IP Pool

    Available when IP Auto Assign is toggled on.

    Select the pool of IP addresses to use for automatic assignment.

    If you have not yet created a pool of IP addresses, you can create one. In the dropdown list, click Create. See also Creating intranet IP pools.

    Subnet Mask Length

    Type the prefix of the IP address or subnet mask.

    DHCP Mode

    Specify whether to use DHCP for automatic IP assignment. Select one of the following options:

    • None - DHCP is not used.
    • Server - Enable DHCP server.
    • Relay - Enable DHCP relay agent.

    DHCP

    When DHCP Mode is set to Server, select a server from shared resources. See Creating DHCP servers.

    When DHCP Mode is set to Relay, select a relay agent from shared resources. See Creating DHCP relay agents.

    DHCP Pool Auto Assign

    Available when DHCP Mode is set to Server.

    Toggle on to enable and specify the pool size.

    Access Types

    Select the types of access to allow on the interface.

  5. Complete the options, and click OK.

    The DMZ setting is created.

  6. If you set Port Type to AGGREGATE, open the DMZ settings for editing, select interface members, and click OK.

    Interface members are added to the DMZ settings.