Fortinet Fortimanager-3000b User manual

Products mentioned in this document are trademarks or registered trademarks

of their respective holders.

Regulatory Compliance

FCC Class B Part 15 CSA/CUS

28 March 2008

Visit these links for more information and documentation for your Fortinet product.

Technical Documentation - http://docs.forticare.com

Fortinet Knowledge Center - http://kc.forticare.com

Fortinet Technical Support - http://support.fortinet.com

•

Connecting

Tools and Documenation

Straight-through

and cross over

Ethernet cables

Power Cables

4 hot-swappable

hard disks

DB-9 Serial Cable

Trademarks

Products mentioned in this document are trademarks.

FortiManager-3000B

QuickStart Guide

PSRST

HDD1(P0) HDD3(P2)

HDD2(P1) HDD4(P3)

DISKDRIVELEGEND POWER

ACTIVITY

PS RST

HDD1 (P0)

HDD3 (P2)

EMPTY EMPTY

HDD2 (P1)

HDD4 (P3)

DISK DRIVE LEGEND POWER

ACTIVITY

PS RST

HDD1 (P0)

HDD3 (P2)

EMPTY EMPTY

HDD2 (P1)

HDD4 (P3)

DISK DRIVE LEGEND POWER

ACTIVITY

Power

connections USB for

future use

DB9 Serial

connection

Ethernet

connections

Ethernet

connections

LED Indicators

USB (Behind front panel)

Power Button

Hardware Reset Button

Front

Back

Power Suppy Alarm Reset Button

Power connections

Straight-through Ethernet

cable connects to hub or

switch on the network.

Null modem cable connects

to serial port on management

computer.

Package Contents

Connector Type Speed Protocol Description

Port 1 to 4 RJ-45 100/1000

Base-T

Ethernet Connection to the internal network.

CONSOLE DB9 9600 bps

8/N/1

RS-232

serial

Optional connection to the management computer.

Provides access to the command line interface.

USB USB USB For future use.

Connect the following to the FortiManager system. Ensure the FortiManager system is

placed on a stable surface or securely mounted in a 19” rack.

Insert the hard disks included in the FortiManager package into the bays of the

FortiManager unit, starting in bay 1. Use the diagram on the front panel as a guide.

Insert a network cable to port 1. Insert the other end to the router or switch connected

to the network.

Connect one power chord to a power supply. Connect the other power cord to an

alternate power source if available.

Connect the Power Cord to a surge protected power bar or power supply.

Press the Power button to turn on the FortiManager unit.

The power LED appears blue and the hard disk icon LED ashes blue while the system

boots.

For more information, see the FortiManager Install Guide.

•

FortiManager-3000B

02-30006-462-20080328

QuickStart Guide

Web-based manager

The FortiManager web-based manager is an easy to use management tool.

Use it to congure the administrator password, the interface and default gateway addresses,

and the DNS server addresses.

Requirements:

An Ethernet connection between the FortiManager system and management computer.

A web browser such as FireFox 2.0 and higher or Internet Explorer 6.0 and higher on

the management computer.

•

Command Line Interface (CLI)

The CLI is a full-featured management tool. Use it to congure the administrator password,

the interface addresses, the default gateway address, and the DNS server addresses. To

congure advanced settings, see the Tools and Documentation CD-ROM.

Requirements:

The DB9 serial connection between the FortiManager system and management com-

puter.

A terminal emulation application (HyperTerminal for Windows) on the management

computer.

•

Conguration Tools

Light Icon Description

The light ashes orange when packets are sent and received on

the Ethernet port 1 and 2.

Power indicator is blue when the FortiManager system is on.

The light ashes blue when reading the boot device.

Hard Disk Upper LED Blue when the hard disk is properly inserted into the drive bay

and the FortiManager is plugged in to a power source.

Hard Disk Lower LED Flashes blue when reading and writing to the hard disk.

Interface conguration

Port 1 Interface: IP: ____.____.____.____

Netmask: ____.____.____.____

Port 2 Interface: IP: ____.____.____.____

Netmask: ____.____.____.____

Port 3 Interface: IP: ____.____.____.____

Netmask: ____.____.____.____

Port 4 interface: IP: ____.____.____.____

Netmask: ____.____.____.____

The interface IP address and netmask must be valid for the internal network.

General settings

Administrator password:

Network Settings: Default Gateway: ____.____.____.____

Primary DNS Server: ____.____.____.____

Secondary DNS Server: ____.____.____.____

Factory default settings

Port 1 interface 192.168.1.99 Administrative account settings

Port 2 interface 0.0.0.0 User name admin

Port 3 interface 0.0.0.0 Password (none)

Port 4 interface 0.0.0.0

Web-based Manager

Connect the FortiManager system interface to a management computer Ethernet

interface. Use a cross-over Ethernet cable to connect the devices directly. Use straight-

through Ethernet cables to connect the devices through a hub or switch.

Congure the management computer to be on the same subnet as the internal interface

of the FortiManager system. To do this, change the IP address of the management

computer to 192.168.1.2 and the netmask to 255.255.255.0.

To access the FortiManager system web-based manager, start Internet Explorer and

browse to https://192.168.1.99 (remember to include the “s” in https://).

Type admin in the Name eld and select Login (no password required).

Changing an Administrator Password

To change the administrator password

In System Settings, go to Administration > Administrators.

Select Edit.

Select Change Password.

Enter and conrm the password.

Select OK.

Conguring the IP Address and Netmask

To congure the IP address

In System Settings, go to Network > Interface.

Select Edit.

Enter the IP address and netmask.

Select OK.

Conguring the Default Gateway

To congure the default gateway

In System Settings, go to Network > Routing Table.

Enter the gateway IP address and netmask.

Enter the Destination IP and select the Interface.

Select OK.

Adding a FortiGate unit

Before you can manage a FortiGate unit, you must add it to the Device Manager. Adding an

existing operational device will not result in an immediate connection to the device. Device

connection only happens when you successfully resync the device.

To add a FortiGate device

In Device Manager, got to Device > Add Device from the main toolbar.

Enter the following information and select Discover.

IP Address Enter the IP Address of the device to add.

Discover via Select a method used to nd the device. Currently, only CLI (via

SSH) is supported. By using the CLI (via SSH) Method, Device

Manager is able to record each device being added.

Admin user Select Default (admin) if the device uses the default “admin” as its

admin user.

Select Other and enter the admin user name if the device uses a

different user name other than the default “admin”.

Password Enter the password for the admin user.

The discovery process starts. When it completes, the Add New Device page appears.

Verify the information and add a Description if desired.

Select Add.

Command Line Interface

Use the DB-9 serial cable to connect the FortiManager System Console port to the

management computer serial port.

Start a terminal emulation program (HyperTerminal) on the management computer. Use

these settings:

Baud Rate (bps) 9600, Data bits 8, Parity None, Stop bits 1, and Flow Control None.

At the Login: prompt, type admin and press Enter twice (no password required).

Changing an Administrator Password

To change the administrator password, enter the following commands

cong fmsystem admin user

edit admin

set password <password>

end

Conguring the IP Address and Netmask

To congure the IP address and netmask, enter the following commands

cong fmsystem interface

edit port1

set ip <intf_ip>/<netmask_ip>

end

Conguring the Default Gateway

To congure the default gateway, enter the following commands

cong fmsystem route

edit <route_number>

set device {port1 | port2}

set dst <ip_address>/<netmask_ip>

set gateway <ip_address>

end

Collecting Information

Conguring

You have nished conguring the basic settings. You are now ready to add and manage FortiGate units. You can also add FortiClient installations and manager rmware updates and

IPS updates as well as many more management congurations and options. To explore the full range of conguration options, see the online help or the Tools and Documentation CD.

Congure the FortiGate unit to be managed through a FortiManager server. Communica-

tion between the FortiGate unit and the FortiManager server is via an IPSec VPN that is

invisibly pre-congured on the FortiGate unit.

To congure the FortiGate unit

Go to System > Admin > FortiManager.

Complete the conguration and select OK.

Table of contents

Other Fortinet Firewall manuals

Fortinet

Fortinet FortiGate FortiGate-60R Operator's manual

Fortinet

Fortinet FortiGate-200A User manual

Fortinet

Fortinet FortiGate FortiGate-5050 User manual

Fortinet

Fortinet FortiGate FortiGate-5005-DIST User manual

Fortinet

Fortinet FortiGate-300C User manual

Fortinet

Fortinet FortiGate ASM-FX2 User manual

Fortinet

Fortinet FortiGate-400A User manual

Fortinet

Fortinet FortiManager-100 User manual

Fortinet

Fortinet FortiGate-110C User manual

Fortinet

Fortinet FortiGate 3000 User manual

Fortinet

Fortinet FORTIMAIL-5000 User manual

Fortinet

Fortinet FortiGate FortiGate-30B User manual

Fortinet

Fortinet FortiGate-200 User manual

Fortinet

Fortinet FortiGate 5020 User manual

Fortinet

Fortinet FortiGate FortiGate-50 Operator's manual

Fortinet

Fortinet FortiMail 3.0 MR4 Instruction Manual

Fortinet

Fortinet FortiGate FortiGate-400 User manual

Fortinet

Fortinet FortiGate FortiGate-800 Operator's manual

Fortinet

Fortinet FortiGate FortiGate-3810A User manual

Fortinet

Fortinet FortiGate-50A User manual

Fortinet

Fortinet FortiGate FortiGate-300 User manual

Fortinet

Fortinet FortiTester 2000E User manual

Fortinet

Fortinet FortiGate FortiGate-5001A Installation instructions

Fortinet

Fortinet FortiMail-5001A Installation instructions

Popular Firewall manuals by other brands

Kerio Tech

Kerio Tech Control Box 1000 Serie quick guide

PaloAlto Networks

PaloAlto Networks PA-7050 PAN-AIRDUCT Hardware reference guide

Cisco

Cisco 5505 - ASA Firewall Edition Bundle installation guide

NETGEAR

NETGEAR ProSafe FVS318v3 Reference manual

NETGEAR

NETGEAR SRXN3205 - ProSafe Wireless-N VPN Firewall Wireless... Reference manual

Teknim

Teknim TPL NET Network Module Installation and user manual

Dell

Dell NSA E8500 Getting started guide

D-Link

D-Link DFL-200 - Security Appliance user manual

Juniper

Juniper JATP700 How to set up

Ruijie Networks

Ruijie Networks RG-WALL1600-S3100 Hardware installation and reference guide

Cisco

Cisco Firepower 4100 Series Maintenance and upgrade guide

NETGEAR

NETGEAR ProSafe FWAG114 installation guide

Cisco

Cisco RV110W quick start guide

Stonesoft

Stonesoft 3201 installation guide

Draytek

Draytek Vigor2865 Series quick start guide

Watchguard

Watchguard Firebox V10 supplementary guide

Watchguard

Watchguard Firebox SOHO 6 Wireless user guide

Watchguard

Watchguard Firebox T10-D quick start guide

Fortinet FortiManager-3000B User manual

Popular Firewall manuals by other brands