Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • User Guide

    Home FortiPortal 7.4.0 User Guide
    7.4.0
    7.4.1
    7.4.0
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.0.15
    6.0.14
    6.0.13
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.3.8
    5.3.7
    5.3.6
    5.3.5
    5.3.4
    5.3.3
    5.3.2
    5.3.0
    5.2.0
    4.1.0

    Configuring an IP pool

    Configuring an IP pool

    To configure an IP pool:
    1. Go to Security > Firewall Objects.
    2. Select IP Pools in the firewall object type dropdown.
    3. Click Create > IP Pool or select an existing IP pool from the list and click Edit.
    4. In the form, enter the following information:

      Settings

      Guidelines

      Name

      Required. Enter a name for the IP pool.

      Comments

      Enter comments.

      Configure Default Value

      Enable or disable configuration of the default values.

      Type

      Select one of the following:

      • Overload (default)

      • CGN Resource Allocation

      • Fixed Port Range

      • One-to-One

      • Port Block Allocation

      Note: This option is only available when Configure Default Value is enabled.

      Mode

      Select the allocation mode from the following options:

      • Port Block Allocation

      • Overload (Port Block Allocation)

      • Single Port Allocation

      • Overload (Single Port Allocation)

      • Fixed Allocation

      Note: This option is only available when Type is CGN Resource Allocation.

      External IP Range

      Required. Enter the external IP address range.

      Note: This option is only available when Configure Default Value is enabled.

      Internal IP Range

      Required. Enter the internal IP address range.

      Note: This option is only available when Mode is Fixed Allocation.

      NAT64

      Enable or disable NAT64.

      • If disabled, enable or disable address resolution protocol (ARP) replies in Enable ARP Reply.

      • If enabled, enable or disable NAT64 routing in Add NAT64 Route.

      Note: This option is only available when Type is Overload.

      Start Port

      Enter the start port. Default is 5117.

      Note: This option is only available when Type is CGN Resource Allocation.

      End Port

      Enter the end port. Default is 65530.

      Note: This option is only available when Type is CGN Resource Allocation.

      Ports Per User

      Enable or disable a ports per user, then enter the number of ports to allocate.

      Note: This option is only available when Type is Fixed Port Range.

      Block Size

      Enter the allocation block size. Default is 128.

      Note: This option is only available when Type is CGN Resource Allocation or Port Block Allocation.

      Blocks Per User

      Enter the number of blocks allocated per user. Default is 8.

      Note: This option is only available when Type is Port Block Allocation.

      Enable ARP Reply

      Enable or disable address resolution protocol (ARP) replies.

      Note: This option is only available when Configure Default Value is enabled and NAT64 is disabled.

    5. Click Save.
    Previous
    Next

    Configuring an IP pool

    Configuring an IP pool

    To configure an IP pool:
    1. Go to Security > Firewall Objects.
    2. Select IP Pools in the firewall object type dropdown.
    3. Click Create > IP Pool or select an existing IP pool from the list and click Edit.
    4. In the form, enter the following information:

      Settings

      Guidelines

      Name

      Required. Enter a name for the IP pool.

      Comments

      Enter comments.

      Configure Default Value

      Enable or disable configuration of the default values.

      Type

      Select one of the following:

      • Overload (default)

      • CGN Resource Allocation

      • Fixed Port Range

      • One-to-One

      • Port Block Allocation

      Note: This option is only available when Configure Default Value is enabled.

      Mode

      Select the allocation mode from the following options:

      • Port Block Allocation

      • Overload (Port Block Allocation)

      • Single Port Allocation

      • Overload (Single Port Allocation)

      • Fixed Allocation

      Note: This option is only available when Type is CGN Resource Allocation.

      External IP Range

      Required. Enter the external IP address range.

      Note: This option is only available when Configure Default Value is enabled.

      Internal IP Range

      Required. Enter the internal IP address range.

      Note: This option is only available when Mode is Fixed Allocation.

      NAT64

      Enable or disable NAT64.

      • If disabled, enable or disable address resolution protocol (ARP) replies in Enable ARP Reply.

      • If enabled, enable or disable NAT64 routing in Add NAT64 Route.

      Note: This option is only available when Type is Overload.

      Start Port

      Enter the start port. Default is 5117.

      Note: This option is only available when Type is CGN Resource Allocation.

      End Port

      Enter the end port. Default is 65530.

      Note: This option is only available when Type is CGN Resource Allocation.

      Ports Per User

      Enable or disable a ports per user, then enter the number of ports to allocate.

      Note: This option is only available when Type is Fixed Port Range.

      Block Size

      Enter the allocation block size. Default is 128.

      Note: This option is only available when Type is CGN Resource Allocation or Port Block Allocation.

      Blocks Per User

      Enter the number of blocks allocated per user. Default is 8.

      Note: This option is only available when Type is Port Block Allocation.

      Enable ARP Reply

      Enable or disable address resolution protocol (ARP) replies.

      Note: This option is only available when Configure Default Value is enabled and NAT64 is disabled.

    5. Click Save.
    Previous
    Next