It will also be used if captive portal or authentication on a policy is enabled.
# config system global- Disable captive portal on the interface (replace with correct port name):
set auth-keepalive disable
end
edit “PortName "- Disable any form of web authentication on the FortiGate.
set security-mode captive-portal
end
# config firewall policyOf course, the authentication keepalive page will not work anymore, but TCP 1000 will be closed.
edit <ID> >>>>> Need to replace with correct ID
unset users
unset groups
end
# config firewall service customThen, create the policy (replace 'PortName' with desired port)
edit "TCP/1000"
set tcp-portrange 1000
end
# config firewall local-in-policy
edit 1
set intf “PortName”
set srcaddr "all"
set dstaddr "all"
set service "TCP/1000"
set schedule "always"
next
end
Related Articles
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.