Chapter 2 – Getting Started

 

To set logging – CLI

config log eventfilter set event enable

set system enable end

To view the logs go to Log & Report > System Events.

 

Management access

Management access defines how administrators are able to log on to the FortiGate. In NAT mode, access is configured for each FortiGate’s interfaces, using the interface’s IP to connect. In Transparent mode, a single management IP address is configured to allow access.

Management access can be via HTTP, HTTPS, Telnet, or SSH sessions. HTTPS and SSH are preferred as they are more secure. The management computer must connect to an interface that permits management access and its IP address must be on the same network. If you are using VDOMs, an administrator who is restricted to a specific VDOM must use a computer that connects to an interface on that VDOM.

You can allow remote administration of the FortiGate; however, it is not recommended, since it could compromise the security of the FortiGate. If you require remote administration, the following precautions can be taken to improve the security of a FortiGate:

 

  • Use secure administrator passwords.
  • Change these passwords regularly.
  • Enable two-factor authentication for administrators.
  • Enable secure administrative access to this interface using only HTTPS or SSH.
  • Use Trusted Hosts to limit where the remote access can originate from.
  • Do not change the system idle timeout from the default value of 5 minutes.

Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.