Basic Zone Deployment

Use zones and save your sanity! This video goes into some basic zone deployment to help consolidate policy and reduce the number of interface pairs on your policy page.


Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

This entry was posted in Fortinet GURU, FortinetGURU Videos, How To and tagged , , on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

6 thoughts on “Basic Zone Deployment

  1. Kevin

    Should I be concerned if the Zone status when creating policy shows as down? I have a FG90D with the internal switch in hardware switch mode. When I create the zone and include my VLAN interfaces, then create my policy from/to that Zone it shows as down. If its not to be worried about, no problem, I just don’t like seeing red/down. One of those OCD things. Thanks for your site and your videos. I’ve learned quite a bit!

    Reply
    1. Mike Post author

      They do that from time to time. I have a few zones on a couple of my clients that show as down when making policies even though the interfaces they have are up and operational. The policies work fine and I have witnessed no ill effects outside of OCD exhaustion!

      Reply
  2. djoun

    i just see your good video,
    i have some question,
    i have problem with my vlan access to internal, it is needed to create vlan in interface mode ? since i create vlan in internal switch

    Reply
    1. Mike Post author

      Your VLANs have to be created on a port (interface) on the Gate in some fashion. If you have just the internal switch you would create the vlan interface off of that and proceed accordingly.

      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.