English dropdown-ico

Fortinet FortiGate-5001FA2 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34

Go to page of

Similar user manuals

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Fortinet FortiGate-5001FA2, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Fortinet FortiGate-5001FA2 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Fortinet FortiGate-5001FA2. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Fortinet FortiGate-5001FA2 should contain:
- informations concerning technical data of Fortinet FortiGate-5001FA2
- name of the manufacturer and a year of construction of the Fortinet FortiGate-5001FA2 item
- rules of operation, control and maintenance of the Fortinet FortiGate-5001FA2 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Fortinet FortiGate-5001FA2 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Fortinet FortiGate-5001FA2, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Fortinet service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Fortinet FortiGate-5001FA2.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Fortinet FortiGate-5001FA2 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    www.fortinet.com FortiGate-5001F A2 Security System Guide 01-30000-037 9-20080606 For tiGat e-500 1F A2 Security System Guide PWR ACC ST A IPM CONSOLE USB 3 4 1 2 5 6 7 8 A detailed guide to the FortiGate- 5001F A2 Securi ty System. This FortiG ate-5001F A2 Security Syst em Guide describes FortiGate-5001F A2 hardware features, how to in stall the F[...]

  • Page 2

    FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 W arnings and cautions Only trained and qual ified personnel should b e allo wed to install or maintain FortiGate-5000 series equipment. Read and comply with all warning s, cautions and notices in this document. • T urning off all power switche s may not turn of f all power to the F[...]

  • Page 3

    Contents FortiGate-5001F A2 Security System Guide 01-30000-0379-2008060 6 3 Contents Warnings and cautions .............. ................ ................ ................. ................ ...... 2 FortiGate-5001FA2 securi ty system .............. ................... 5 Front panel LEDs and connectors ............ ................ ................[...]

  • Page 4

    FortiGate-5001F A2 Security System Guide 4 01-30000-0379-200806 06 Contents For more information ... .................................... ............... 33 Fortinet documentatio n .... ................ ................ ............. ................ ............. .... 33 Fortinet Tools and Documentation CD ............. ................. .........[...]

  • Page 5

    FortiGate-5001F A2 security system FortiGate-5001F A2 Security System Guide 01-30000-0379-2008060 6 5 FortiGate-5001F A2 security system The FortiGate-5001F A2 security system is a high-perfo rmance FortiGate security system with a total of 8 front pan el gig abit ethernet interfaces and two ba se backplane in terfaces. Us e the fro nt pane l inter[...]

  • Page 6

    FortiGate-5001F A2 Security System Guide 6 01-30000-0379-200806 06 Front panel LEDs and connectors Fo rtiGate-5001F A2 security system The For tiGate-5001FA2 board comes supp lied with four optical or f our coppe r SFP transceivers. Before you can connect FortiGate-5001F A2 interfaces 1 to 4, you must insert the SFP transceiver s into the FortiGate[...]

  • Page 7

    FortiGate-5001F A2 security system Accelera ted packet forwarding and policy enforcement FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 7 Connectors Ta b l e 2 lists and describes the Fo rt iGate-5001F A2 connectors. Accelerated p acket forwarding and policy enforcement FortiGate-5001F A2 Accelerated packet forwarding an d policy [...]

  • Page 8

    FortiGate-5001F A2 Security System Guide 8 01-30000-0379-200806 06 Base backplane gigabit communication FortiGate- 5001F A2 security system • Session Oriented T raffic with long se ssion lifetime, such as FTP sessions. Packet size does not af fect performance for traf fic with long session lifetime. For long sessions, pr ocessing that would other[...]

  • Page 9

    Hardware installation RAM DIMMs FortiGate-5001F A2 Security System Guide 01-30000-0379-2008060 6 9 Hardware inst allation Before use, the FortiGate-5001F A2 board must be correctly inserted into an Advanced T elecommunications Computing Archite cture (ACT A) chassis such as the FortiGate-5140, FortiGate-505 0, or FortiGate-5020 ch assis. Before ins[...]

  • Page 10

    FortiGate-5001F A2 Security System Guide 10 01-30000-0379-200806 06 Installing SFP transceivers Hardware installation Figure 2: Location of For tiGate-5001F A2 RAM DIMM s lot s 3 Insert each RAM DIMM perpendicula r to the RAM DIMM slots. Push the DIMM firmly into place using the minimum amou nt o f force required. When the DIMM is properly seated, [...]

  • Page 11

    Hardware installation Changing FortiGate-5001F A2 jumper settings FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 11 Y ou can install the following types of SFP transceivers for connectors 1, 2, 3, and 4: • optical SFP transc eivers • SFP 1000 Base-LX, SM module • SFP 1000 Base-SX, MM module (mu ltimode) • copper SFP transc[...]

  • Page 12

    FortiGate-5001F A2 Security System Guide 12 01-30000-0379-200806 06 Changing FortiGate-5001F A2 jumper settings Hardware installation Normally , because the jumper s are factor y set, you d o not have to change th em. However , if you are moving a FortiGate-5001F A2 from a FortiGate-5140 or FortiGate-5050 to a FortiGate -5020 or the reverse, you ne[...]

  • Page 13

    Hardware installation Inserting a FortiGate-5001F A2 board into a chassis FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 13 T o change or verify the JP3 jumper sett ing T o complete this procedure, you need: • A FortiGate-5001F A2 board • A tool for moving jumpers (optional) • An electrost atic discharge (ESD) preven tive wr[...]

  • Page 14

    FortiGate-5001F A2 Security System Guide 14 01-30000-0379-200806 06 Inserting a Fo rtiGate-5001F A2 board into a chassis Hardware installation Figure 4: FortiGate-5001F A2 mounting components Before inserting the FortiGate -5001FA2 board in a chassis Before installing the FortiGat e-5001F A2 board in a chassis you should verify that the RAM DIMMs a[...]

  • Page 15

    Hardware installation Inserting a FortiGate-5001F A2 board into a chassis FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 15 1 Attach the ESD wrist strap to your wrist an d to an ESD socket or to a bare metal surface on the chassis or frame. 2 Unlock the left and right handles by squeezing the handle locks. 3 Open the left and r ig[...]

  • Page 16

    FortiGate-5001F A2 Security System Guide 16 01-30000-0379-200806 06 Inserting a Fo rtiGate-5001F A2 board into a chassis Hardware installation 7 T urn both handles to their fully-closed positions. The handles should hook into the sides of the chassis slot. Closing the ha ndles draws the FortiGate-5001 F A2 board into place in th e chassis slot and [...]

  • Page 17

    Hardware installation Removing a FortiGate-5001F A2 board from a chassis FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 17 Removing a FortiGate-5001F A2 board from a chassis The following procedure describes h ow to correc tly use the F ortiGate-500 1F A2 mounting c omponents shown in Figure 4 to remove a FortiGate-500 1F A2 board[...]

  • Page 18

    FortiGate-5001F A2 Security System Guide 18 01-30000-0379-200806 06 T roublesh ooting Hardware installation 5 Open the left an d right handles to their fully open position s. Opening the handles slides the boar d a short dista nce out of the slot, disconnecting the board fr om the chassis backplane. The IPM LED turns blue. All other LEDs turn off. [...]

  • Page 19

    Hardware installation T r oubleshooting FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 19 Figure 5: Location of Fo rtiGate-5001F A2 p ower switch If the left handle is dama ged or positioned incorrectly the FortiGate-5 001F A2 board does not receive power and will not st art up. Mak e sure th e left handle is correctly aligned, fu[...]

  • Page 20

    FortiGate-5001F A2 Security System Guide 20 01-30000-0379-200806 06 T roublesh ooting Hardware installation All chassis: Firmware problem If the FortiGate-5001 F A2 board power s witch is connected and the JP3 jump er and shelf manager ar e set as required, and the Fo rtiGate-5001F A2 still does not start up, the pr oblem could be with Fort iOS. Co[...]

  • Page 21

    Quick Configuration Guide Registering your Fortinet product FortiGate-5001F A2 Security System Guide 01-30000-0379-2008060 6 21 Quick Configuration Guide This section is a quick start guide to connectin g and configuring a FortiGate- 5001F A2 security system for your network. Before using this chapter , your FortiGate-5000 series or compa tible A T[...]

  • Page 22

    FortiGate-5001F A2 Security System Guide 22 01-30000-0379-200806 06 Planning the confi guration Quick Configuration Guide NAT/Route mode In NA T/Route mode, the FortiGate-500 1F A2 security system is visib le to the networks that it is connected to. Each in terface connected to a network must be configured with an IP address that is v alid for that[...]

  • Page 23

    Quick Configuration Guide Choosing the configuratio n tool FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 23 Figure 8: Example FortiGate-5001F A2 bo ard operating in T ransparent mode Y ou would typically deploy a FortiGate-50 01F A2 security system in T ransparen t mode on a private network be hind an exis ting firewall or behin [...]

  • Page 24

    FortiGate-5001F A2 Security System Guide 24 01-30000-0379-200806 06 Factory default settings Quick Configuration Guide Factory default settings The FortiGat e-5001F A2 u nit ships with a fa ctory default configuration. Th e default configuration allows you to connect to and use th e FortiGate-5001F A2 web-based manager to configure the For tiGate-5[...]

  • Page 25

    Quick Configuration Guide Configuring NA T/Route mode FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 25 Using the web-based manager to configure NAT/Route mode 1 Connect port1 of the FortiGate-5001F A2 bo ard to the same hub or switch as the computer you will use to co nfigure the Fo rtiGate board. 2 Configure the manag ement comp[...]

  • Page 26

    FortiGate-5001F A2 Security System Guide 26 01-30000-0379-200806 06 Configuring NA T/Route mode Quick Configuration Guide Using the CLI to c onfigure NAT/Route mode 1 Use the serial cable supplied with your FortiGate -5001F A2 board to connect the FortiGate Console port to the ma nagement compu ter serial port. 2 S tart a terminal emula tion progra[...]

  • Page 27

    Quick Configuration Guide Configuring T ransparent mode FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 27 Configuring T ransp arent mode Use Ta b l e 7 to gather the information you need to customize T ranspare nt mode settings. Using the web-based manager to configure Transparent mode 1 Connect port1 of the FortiGate-5001F A2 bo [...]

  • Page 28

    FortiGate-5001F A2 Security System Guide 28 01-30000-0379-200806 06 Upgrading FortiGate-5001F A2 firmware Quick Configuration Guide T o configure the Primary and Secondary DNS server IP address es 1 Go to System > Network > Options . 2 Enter the Primary a nd Secondary DNS IP add resses that you added to Ta b l e 7 o n page 27 as required and [...]

  • Page 29

    Quick Configuration Guide Upgrading FortiGate-5001F A2 firmware FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 29 4 Under System Information > Firmware V ersion , select Update. 5 T ype the path a nd filename of the fir mware image file, or select Browse and locate the file. 6 Select OK. The FortiGate-5001 F A2 board uploads th[...]

  • Page 30

    FortiGate-5001F A2 Security System Guide 30 01-30000-0379-200806 06 FortiGate-5001F A2 base backplane data communication Quick Configuration Guide FortiGate-5001F A2 base backp lane dat a communication Y ou can configure the FortiGate-5001 F A2 boards for da ta communication s using the two FortiGa te-5140, FortiGate-5050, or FortiGat e-5020 cha ss[...]

  • Page 31

    Quick Configuration Guide Powering off the F ortiGate-5001F A2 bo ard FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 31 Figure 9: FortiGate-5001F A2 interface list with backplane in terfaces enabled T o enable base backplane dat a communication from the FortiGate-5001F A2 CLI From the F ortiGate-50 01F A2 boar d CLI yo u can use t[...]

  • Page 32

    FortiGate-5001F A2 Security System Guide 32 01-30000-0379-200806 06 Powering off the FortiGate-5001F A2 board Quick Configuration Guide[...]

  • Page 33

    For more information Fortinet documentation FortiGate-5001F A2 Security System Guide 01-30000-0379-20080 606 33 For more information Support for you r Fortinet produ ct is available as online he lp from within the web-based manager, fro m the T ools and Document ation CD included with the product, on the Fortinet T echnical Document ation web site,[...]

  • Page 34

    FortiGate-5001F A2 Security System Guide 01-30000-0379-200806 06 www.fortinet.com © Copyright 2008 Fortinet, Inc. All rights rese rved. No part of this publica tion including text, examples, diagrams or illustrations may be reproduced, transmitted, or tran slated in any form or by any means, electro nic, mechanical, manual, optical or otherwise, f[...]