config firewall policyOr access can be allowed only to some server(s) and/or service(s), when the Default Action is set to Deny:
set default-action accept
config rule
edit "firewall_rule"
set in-interface port2
set out-interface port1
set source-address <physical_server >
set destination-address <internet_address >
set service <all_tcp >
set action deny
next
end
end
config firewall policyNotes
set default-action deny
config rule
edit "firewall_rule"
set in-interface port2
set out-interface port1
set source-address <physical_server >
set destination-address <allowed_addresses >
set service <port_80>
set action accept
next
end
end
FAD # config firewallMore details can be found in CLI Reference Guide for FortiADC D Series in the Fortinet Document Library.
address firewall address
address6 firewall IPv6 address
connlimit firewall connection limit
connlimit6 firewall IPv6 connection limit
nat-snat snat
policy firewall policy
policy6 firewall IPv6 policy
qos-filter QoS filter
qos-filter6 QoS IPv6 filter
qos-queue QoS queue
service firewall service
vip virtual IP
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.