Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Andy_G
Staff
Staff

Created on ‎08-28-2019 12:31 AM

Article Id 196424

Technical Note: FortiGate / FortiManager Communications Protocol Guide, v6.2

Description
The FortiGate / FortiManager Communications Protocol Guide, v6.2 is available as an attachment to this article.


Table of Contents

ChangeLog

Overview
Exceptions
Protocolcomponents
FGFM header
Keep-Alive messages
Customizing the Keep-Alive settings
FortiManager passive mode

FortiGate to FortiManager authentication
Tunneling
Tunnel setup details
Communication hardening
Protocol operation on FortiGate
Security concerns
Protocol operation on FortiManager

Topology scenarios
Scenario1: FortiGate has public IP address, FortiManager is behind NAT
Scenario2: FortiManager on a routable public IP address/FortiGate behind NAT
Scenario3: Both FortiManager and FortiGate have public IP addresses
Scenario4: Mixed topology
Scenario5: Both devices behind NAT

FGFM built-in recovery
Making changes to the FortiGate management IP address
FGFM recovery logic
Example

Preview file
1184 KB
532
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.