I have figured out how to configure SD-WAN, Link Aggregation, Virtual IPs and IP Pools on Fortigate 200F and 201F Firewalls

Subject: I have figured out how to configure SD-WAN, Link Aggregation, Virtual IPs and IP Pools on Fortigate 200F and 201F Firewalls


Good day from Singapore,


I have figured out how to configure SD-WAN, Link Aggregation, Virtual IPs and IP Pools on Fortigate 200F and 201F Firewalls, today, 30 Mar 2023 Thursday Singapore Time.


I have reviewed the existing configuration of Fortigate 200D firewall for a wine company today. Subsequently I have also reviewed the existing configuration of Fortigate 201F firewall for an investment company today. The Fortigate 201F firewall has SD-WAN configured. I am reviewing the configuration of existing Fortigate firewalls in preparation for setting up brand new Fortigate 200F firewall in April 2023, if I have the opportunity to do so.


This is the reference guide on how to configure SD-WAN in Fortigate firewalls.


Article: Configuring the SD-WAN interface

Link: https://docs.fortinet.com/document/fortigate/7.2.4/administration-guide/218559/configuring-the-sd-wan-interface


This is the reference guide on how to configure Link aggregation (IEEE 802.3ad) in Fortigate firewalls.


Article: Aggregation and redundancy

Link: https://docs.fortinet.com/document/fortigate/7.2.4/administration-guide/567758/aggregation-and-redundancy


Regarding firewall policies (aka firewall rules)

================================================


A. Virtual IPs


Virtual IPs are needed for port forwarding.


If the direction of the traffic is from WAN to any other physical interface, you are configuring port forwarding. Before you can configure port forwarding, you must configure Virtual IPs. After configuring Virtual IPs, you can proceed to configure firewall policies (firewall rules) for port forwarding.


B. IP Pools


If your company/business/organization has many public static IPv4 addresses, you can force a server in your internal network to take on a specific public static IPv4 address. This is known as masquerading. IP Pool is applied in firewall policies for the direction of the traffic from LAN to WAN, for example, from your mail server to the internet. This direction of the traffic is known as outgoing internet access.


I have become reasonably seasoned in configuring Fortigate firewalls, after having configured Fortigate firewalls of various sizes for 8 different companies/organizations in Singapore. I have also configured SSL VPN in Cisco ASA 5506-X firewall for an investment company in Singapore previously (I think 2-3 years ago).


That's all folks. Please feel free to correct me if I am wrong. Hehe.


Regards,


Mr. Turritopsis Dohrnii Teo En Ming

Targeted Individual in Singapore

Blogs:

https://tdtemcerts.blogspot.com

https://tdtemcerts.wordpress.com

GIMP also stands for Government-Induced Medical Problems.   





REFERENCES

===========


[1] https://mailarchive.ietf.org/arch/msg/sdwan-sec/8wnrdSpz4OcLKiFzWcCiHKSsNzY/


[2] https://sourceforge.net/p/net-snmp/mailman/message/37797887/


[3] https://www.mail-archive.com/net-snmp-users@lists.sourceforge.net/msg33443.html


[4] https://marc.info/?l=net-snmp-users&m=168019013930772&w=2


[5] https://markmail.org/search/?q=teo%20en%20ming#query:teo%20en%20ming%20order%3Adate-backward+page:1+mid:thjsel4maj5xzkef+state:results


Comments

Post a Comment

Popular posts from this blog

How the Singapore Government cheated my family of a HDB flat (Draft 22 Aug 2023)

Subject: How the Singapore Government cheated my family of a HDB flat (Draft 22 Aug 2023) It is a Well-Known Fact that government(s) invented mental illness to punish and torture people (and their families) who criticise the government or say bad things about the government. The Singapore Government rewarded my mother with a mental illness (schizophrenia). By leveraging mind control technology, the Singapore Government is able to make my mother hear voices in her head and trick her into believing that her neighbors are scolding her and targeting her everyday. Yes, the Singapore Government resorted to using this trickery. My mother firmly believes that her neighbors are scolding her and targeting her everyday. So we sold off our 1st HDB flat at Bedok North Street 3 and purchased another HDB flat at Yishun without careful consideration, planning and advice. When we moved to the HDB flat at Yishun, my mother still firmly believes that her neighbors are scolding her and targeting her every
Read more

[DRAFT 26 SEP 2022] HDB refuses to reduce monthly rental fees of my rental flat despite many appeals

Subject: [DRAFT 26 SEP 2022] HDB refuses to reduce monthly rental fees of my rental flat despite many appeals DRAFT 26 SEP 2022 FOR IMMEDIATE RELEASE My name is Mr. Turritopsis Dohrnii Teo En Ming. I am 44 years old. I am a Targeted Individual (TI) living in Singapore. A Targeted Individual is a person who is persecuted, targeted, marked and blacklisted by the government. After graduation from the National University of Singapore in Dec 2006, I started working in Defense Science and Technology Agency (DSTA) as an IT Engineer. But I offended Singapore Minister Mentor Lee Kuan Yew in the year 2007. When I was having a private conversation with my manager Mr. Loh Choon Fah in his office, I said: "When Lee Kuan Yew is gone, Singapore would be more democratic.". This is how I offended Singapore strongman Lee Kuan Yew. Within a few months, I started hearing threatening and menacing voices from the Singapore government. Hearing voices is also known as schizophrenia (mental illness).
Read more