Getting Started with FortiGate

Getting Started with FortiGate
eBook: $17.99
Formats: PDF, PacktLib, ePub and Mobi formats
save 15%!
Print + free eBook + free PacktLib access to the book: $47.98    Print cover: $29.99
save 37%!
Free Shipping!
UK, US, Europe and selected countries in Asia.
Also available on:
Table of Contents
Sample Chapters
  • Learn about FortiGate and FortiOS 5 starting from the ground up, with no previous knowledge of Fortinet products
  • Understand and deliver Routing, VLANs, NAT, and high availability solutions using FortiGate units
  • Design and deploy security policies, content filters, and endpoint security using UTM features inside a FortiGate unit

Book Details

Language : English
Paperback : 126 pages [ 235mm x 191mm ]
Release Date : November 2013
ISBN : 1782178201
ISBN 13 : 9781782178200
Author(s) : Rosato Fabbri, Fabrizio Volpe
Topics and Technologies : All Books, Enterprise Products and Platforms, Enterprise

Table of Contents

Chapter 1: First Steps
Chapter 2: Filters, Policies, and Endpoint Security
Chapter 3: VPNs and Tunneling
Chapter 4: High Availability
Chapter 5: Troubleshooting
  • Chapter 1: First Steps
    • Administering a FortiGate
    • Unboxing the FortiGate and license options
    • First access to a FortiGate
      • Changing the admin password, name of the host, time, and time zone
      • Selecting the operation mode and configuring the internal and external interfaces
      • Registering your FortiGate
      • Updating the system firmware
      • Restoring a device
      • Updating definitions and services
      • VLANs and logical interfaces
    • Static routing
    • Policy routing
    • Dynamic routing
    • Introducing OSPF
      • Configuring OSPF on a Fortigate
        • OSPF router ID
      • OSPF area
      • Network
      • Interfaces
    • Monitoring OSPF routes
    • Summary
    • Chapter 2: Filters, Policies, and Endpoint Security
      • Processing a data packet inside a FortiGate
      • Firewall features
        • Interfaces and zones
        • Firewall objects
        • Addresses
        • Services
        • Schedules
      • UTM profiles
        • Antivirus
        • Intrusion protection
        • Web filter
        • Client reputation
      • Traffic shaping
      • Security policies
      • FortiClient
        • FortiClient management
      • Bring Your Own Device (BYOD)
      • Summary
      • Chapter 3: VPNs and Tunneling
        • SSL VPN
          • Introduction to SSL VPN portal with web-only mode
          • Introduction to SSL VPN portal with tunnel mode
        • Configuring the SSL VPN portal
          • Configuring the SSL VPN settings
          • Configuring the SSL VPN portal
          • Configuring users and groups for the SSL VPN portal
          • Configuring a policy for the SSL VPN portal
        • FortiGate IPsec VPN
          • Configuring an IPsec VPN
          • Designing a Gateway-to-Gateway VPN
          • Hub-and-Spoke VPN
          • Dialup VPN
          • FortiClient dialup client
          • L2TP VPN
        • Summary
        • Chapter 4: High Availability
          • Link aggregation
          • Virtual MAC addresses
          • FortiGate Cluster Protocol
            • Active-Passive and Active-Active Clusters
          • FortiGate Session Life Support Protocol
          • Virtual Router Redundancy Protocol
          • Full mesh high availability
          • Introducing virtual domains
          • VDOMs and virtual clustering
          • Summary
          • Chapter 5: Troubleshooting
            • Base system diagnostics
            • Troubleshooting routing
              • Layer 2 and layer 3 TCP/IP diagnostics
            • Troubleshooting security policies and profiles
              • FortiOS packet sniffer
              • Firewall session lists information
              • Debugging URL and anti-spam filters
            • Troubleshooting virtual domains
            • Troubleshooting VPN
            • Troubleshooting High Availability (HA)
              • Troubleshooting HA clusters
              • Troubleshooting virtual clustering
            • Summary

            Rosato Fabbri

            Rosato Fabbri, 50 years old, has been the IT Manager for Need s.r.l. for the last 10 years. The company has more than a thousand users spread across eight sites (a national headquarters in Italy and a network of remote offices abroad). Need's network is entirely based on FortiGate appliances and on secure VPNs over the Internet. Rosato used his first FortiGate in 2003 and for him it was "love at first sight". He fully used the competitive advantage of Fortinet technology, both in functionalities and in features and that advantage made Need a use case, enabling the company to gain the trust of its customers and adding a lead over competitors.

            Fabrizio Volpe

            Fabrizio Volpe has worked in the Iccrea Banking Group since 2000, as Network and Systems Administrator. Since 2011 he has been awarded the Microsoft MVP on Directory Services from Microsoft, and his focus is on Windows systems, security, and unified communications. Since the year 2000 Fabrizio has delivered speeches at many events and conferences (both Italian and international). He is committed to creating content that is accessible to a wide number of people, so he often publishes content on his Lync2013 channel on YouTube (, on his personal blog (, and on SlideShare ( In the last year Fabrizio has published two books with Packt, Getting Started with Microsoft Lync Server 2013 and Instant Microsoft Forefront UAG Mobile Configuration Starter. He has also made available a free e-book, Microsoft Lync Server 2013: Basic Administration in the TechNet gallery (
            Sorry, we don't have any reviews for this title yet.

            Submit Errata

            Please let us know if you have found any errors not listed on this list by completing our errata submission form. Our editors will check them and add them to this list. Thank you.


            - 1 submitted: last submission 31 Dec 2013

            Errate Type: Technical | Page Number: 16


            should be:

   (for the CLI in FortiOS 5.0)

   (for Backup (CLI and interface here))

   (for Restore (CLI and interface here))

            Sample chapters

            You can view our sample chapters and prefaces of this title on PacktLib or download sample chapters in PDF format.

            Frequently bought together

            Getting Started with FortiGate +    Developing Applications with Salesforce Chatter =
            50% Off
            the second eBook
            Price for both: €20.60

            Buy both these recommended eBooks together and get 50% off the cheapest eBook.

            What you will learn from this book

            • Configure static and dynamic routing in a FortiGate unit
            • Filter spam, viruses, and illegitimate Internet activities using the UTM features of FortiGate
            • Enforce compliance and block threats using IPS and endpoint controls
            • Design tunnels with SSL and IPSEC to extend your network in a secure manner
            • Use high availability solutions including link aggregation, clustering, and virtual domains
            • Identify the main features and uses of the Forticlient software
            • Troubleshoot issues related to the aforementioned features

            In Detail

            FortiGate from Fortinet is a highly successful family of appliances enabled to manage routing and security on different layers, supporting dynamic protocols, IPSEC and VPN with SSL, application and user control, web contents and mail scanning, endpoint checks, and more, all in a single platform. The heart of the appliance is the FortiOS (FortiOS 5 is the latest release) which is able to unify a friendly web interface with a powerful command line to deliver high performance. FortiGate is able to give users the results they usually achieve at a fraction of the cost of what they would have to invest with other vendors.

            This practical, hands-on guide addresses all the tasks required to configure and manage a FortiGate unit in a logical order. The book starts with topics related to VLAN and routing (static and advanced) and then discusses in full the UTM features integrated in the appliance. The text explains SSL VPN and IPSEC VPN with all the required steps you need to deploy the aforementioned solutions. High availability and troubleshooting techniques are also explained in the last two chapters of the book.

            This concise, example-oriented book explores all the concepts you need to administer a FortiGate unit. You will begin by covering the basic tools required to administer a FortiGate unit, including NAT, routing, and VLANs. You will then be guided through the concepts of firewalling, UTM inside the appliance, tunnelling using SSL, and IPSEC and dial-up configurations. Next, you will get acquainted with important topics like high availability and Vdoms. Finally, you will end the book with an overview of troubleshooting tools and techniques.


            This book is a step-by-step tutorial that will teach you everything you need to know about the deployment and management of FortiGate, including high availability, complex routing, various kinds of VPN working, user authentication, security rules and controls on applications, and mail and Internet access.

            Who this book is for

            This book is intended for network administrators, security managers, and IT pros. It is a great starting point if you have to administer or configure a FortiGate unit, especially if you have no previous experience. For people that have never managed a FortiGate unit, the book helpfully walks through the basic concepts and common mistakes. If your work requires assessing the security of a corporate network or you need to interact with people managing security on a Fortinet product, then this book will be of great benefit. No prior knowledge of Fortigate is assumed.

            Code Download and Errata
            Packt Anytime, Anywhere
            Register Books
            Print Upgrades
            eBook Downloads
            Video Support
            Contact Us
            Awards Voting Nominations Previous Winners
            Judges Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software
            Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software