manualshive.com logo in svg

Fortinet FortiGate 5001A, User Manual

Download the free user manual for the Fortinet FortiGate 5001A, a powerful and secure network security appliance. Get comprehensive instructions and troubleshooting tips to maximize the capabilities of this product. Visit manualshive.com to download the manual and unlock your device's full potential.

Share
Download
background image

FortiGate-5001A   Security System Guide

22

01-30000-83456-20081023

Installing and removing AMC modules

Hardware installation

To complete this procedure, you need:

A FortiGate-5001A board with an open slot

FortiGate AMC module to install

An electrostatic discharge (ESD) preventive wrist strap with connection cord

1

Attach the ESD wrist strap to your wrist and to an available ESD socket or wrist 
strap terminal.

2

Eject the FortiGate-5001A board from the chassis slot.

3

With the FortiGate-5001A left (top) handle fully open remove the AMC slot filler 
panel from the FortiGate-5001A front panel by pulling open the latch on the AMC 
slot filler front panel and then pulling the slot filler panel out using the latch.

4

Pull the latch on the FortiGate AMC module front panel to the extended position.

5

With the FortiGate-5001A left (top) handle fully open, insert the FortiGate AMC 
module into the empty slot in the FortiGate-5001A front panel. Make sure the 
Fortinet logo on the module front panel is right-side up. The Fortinet logo appears 
on the upper-right corner of the module front panel.

6

Carefully guide the module into the FortiGate-5001A board.

7

Insert the module by applying moderate force to the front faceplate near the upper 
edge to slide the module into the opening.

The module should glide smoothly into the opening. If you encounter any 
resistance while sliding the module in, the module could be aligned incorrectly. 
Pull the module back out and try inserting it again.

8

Press the latch on the module front panel to lock in the module.

9

Insert the FortiGate-5001A board into a chassis slot.

Removing AMC modules

Before removing an AMC module you need to shut down the FortiGate-5001A 
board using proper shut down procedures.

To remove an AMC module from a FortiGate-5001A board

To complete this procedure, you need:

A FortiGate-5001A board containing a FortiGate AMC module

An electrostatic discharge (ESD) preventive wrist strap with connection cord

!

Caution: 

FortiGate-5001A boards and FortiGate AMC modules must be protected from 

static discharge and physical shock. Only handle or work with these components at a 
static-free workstation. Always wear a grounded electrostatic discharge (ESD) preventive 
wrist strap when handling these components.

!

Caution: 

Do not operate the FortiGate-5001A board with an open AMC opening. For 

optimum cooling performance and safety, the AMC opening must contain a slot filler panel 
or a FortiGate AMC module.

!

Caution: 

Because the FortiGate-5001A board does not support hot swapping AMC 

modules, you must eject the FortiGate-5001A board from its chassis slot and completely 
open the handles before inserting or removing AMC modules or slot filler panels.

Summary of Contents for FortiGate 5001A

Page 1: ... board in a FortiGate 5000 series chassis and how to configure the FortiGate 5001A security system for your network The most recent versions of this and all FortiGate 5000 series documents are available from the FortiGate 5000 page of the Fortinet Technical Documentation web site http docs forticare com Visit http support fortinet com to register your FortiGate 5001A security system By registering...

Page 2: ... to an available ESD connector such as the ESD sockets provided on FortiGate 5000 series chassis Make sure all FortiGate 5000 series components have reliable grounding Fortinet recommends direct connections to the building ground If you install a FortiGate 5000 series component in a closed or multi unit rack assembly the operating ambient temperature of the rack environment may be greater than roo...

Page 3: ...01A board 20 Installing and removing AMC modules 20 Inserting AMC slot filler panels 21 Inserting AMC modules 21 Removing AMC modules 22 Troubleshooting 23 FortiGate 5001A does not start up 23 FortiGate 5001A status LED is flashing during system operation 24 FortiGate AMC modules not detected by FortiGate 5001A board 24 Quick Configuration Guide 25 Registering your Fortinet product 25 Planning the...

Page 4: ...ng FortiGate 5001A firmware 33 FortiGate 5001A base backplane data communication 34 FortiGate 5001A fabric backplane data communication 36 Powering off the FortiGate 5001A board 37 For more information 39 Fortinet documentation 39 Fortinet Tools and Documentation CD 39 Fortinet Knowledge Center 39 Comments on Fortinet technical documentation 39 Customer service and technical support 39 Register yo...

Page 5: ...use to store log files and content archives Other than the double width and single width AMC openings the FortiGate 5001A DW and SW models have the same functionality and performance The FortiGate 5001A security system contains two front panel 1 gigabit ethernet interfaces two base backplane 1 gigabit interfaces and two fabric backplane 1 gigabit interfaces Use the front panel interfaces for conne...

Page 6: ...RJ 45 RS 232 serial console connection 2 USB connectors Mounting hardware LED status indicators Front panel LEDs and connectors From the FortiGate 5001A font panel you can view the status of the front panel LEDs to verify that the board is functioning normally You also connect the FortiGate 5001A board to your network through the front panel 10 100 1000 ethernet connectors The front panel also inc...

Page 7: ... ACC LED flashes green when the FortiGate 5001A board accesses the FortiOS flash disk The FortiOS flash disk stores the current FortiOS firmware build and configuration files The system accesses the flash disk when starting up during a firmware upgrade or when an administrator is using the CLI or GUI to change the FortiOS configuration Under normal operating conditions this LED flashes occasionall...

Page 8: ...e FortiSwitch 5003 board see the FortiSwitch 5003 System Guide For information about the FortiSwitch 5003A board see the FortiSwitch 5003A System Guide Fabric backplane communication The FortiGate 5001A fabric backplane interfaces can be used for data communication or HA heartbeat communication between FortiGate 5001A boards installed in the same or in different FortiGate 5000 chassis To support 1...

Page 9: ... For information about Fortinet NP2 processor acceleration see the Fortinet Hardware Acceleration Technical Note Follow the instructions in the FortiGate RTM XB2 System Guide to install the FortiGate RTM XB2 module AMC modules You can install one FortiGate AMC Double width Module ADM in the FortiGate 5001A DW front panel AMC double width opening For example The FortiGate ADM XB2 provides 2 NP2 acc...

Page 10: ...abit interfaces The FortiGate ASM S08 provides adds a removable hard disk that you can use to store log files and content archives Figure 5 FortiGate ASM FB4 ASM FB4 LINK ACT 1 2 3 4 LINK ACT LINK ACT LINK HS OOS PWR OT ACT Note You can operate a FortiGate 5001A board with both a FortiGate RTM XB2 module and a supported FortiGate AMC module installed at the same time ...

Page 11: ... a FortiGate 5001A board Removing a FortiGate 5001A board Resetting a FortiGate 5001A board Installing and removing AMC modules Troubleshooting Caution If you are installing a FortiGate RTM XB2 module you should install the FortiGate RTM XB2 module first before you install the FortiGate 5001A board to avoid possible damage Follow the instructions in the FortiGate RTM XB2 System Guide to install th...

Page 12: ...ou must change the SW11 switch setting as shown in Figure 7 Figure 7 FortiGate 5020 setting for SW11 standalone mode In all cases you should confirm that you have the correct SW11 setting before installing the board in a chassis Table 3 FortiGate 5001A SW11 settings for different chassis Chassis CorrectSW11 Setting Result of wrong jumper setting FortiGate 5140 or 5050 or any ACTA chassis with an o...

Page 13: ...oard and is accessible from the left side of the FortiGate 5001A board under the copper heat sink see Figure 8 Figure 8 Location of SW11 on the FortiGate 5001A board 4 If required change SW11 to the correct setting 5 Insert the FortiGate 5001A board into a chassis and verify that the board starts up and operates correctly For inserting instructions see Inserting a FortiGate 5001A board on page 15 ...

Page 14: ... 5001A boards are horizontal when inserted into a FortiGate 5050 chassis and vertical when inserted into a FortiGate 5140 chassis The inserting and removing procedures are the same in either case For clarity the descriptions in this document refer to the left top and right bottom mounting components Closed Open Alignment Pin Retention Screw Lock Handle Alignment Pin Retention Screw Lock Handle Han...

Page 15: ...o complete this procedure you need A FortiGate 5001A board with either the correct AMC slot filler panel or a FortiGate AMC module installed in the front panel AMC opening An ATCA chassis with an empty slot An electrostatic discharge ESD preventive wrist strap with connection cord Alignment Pin Retention Screw Lock AMC Slot Filler Handle Caution Do not carry the FortiGate 5001A board by holding th...

Page 16: ...ot in the chassis 7 Carefully guide the board into the chassis using the rails in the slot Insert the board by applying moderate force to the front faceplate not the handles to slide the board into the slot The board should glide smoothly into the chassis slot If you encounter any resistance while sliding the board in the board could be aligned incorrectly Pull the board back out and try inserting...

Page 17: ... LED flashes blue for a few seconds At the same time the STATUS LED flashes green the interface LEDs flash amber and the ACC LED starts flashing green After a few seconds the IPM LED goes out and the FortiGate 5001A firmware starts up During start up the STATUS LED may continue to flash green Once the board has started up and is operating correctly the front panel LEDs are lit as described in Tabl...

Page 18: ...rtiGate 5001A board installed An electrostatic discharge ESD preventive wrist strap with connection cord 1 Attach the ESD wrist strap to your wrist and to an available ESD socket or wrist strap terminal 2 Disconnect all cables from the FortiGate 5001A board including all network cables the console cable and any USB cables or keys Tighten Retention Screw Caution Do not carry the FortiGate 5001A boa...

Page 19: ...croswitch turns off all LEDs and ejects the board from the chassis slot 6 Pull the board about half way out 7 Turn both handles to their fully closed positions 8 Carefully slide the board completely out of the slot 9 Re attach the protective metal frame before shipping or storing the FortiGate 5001A board Loosen Retention Screw Caution To avoid damaging the lock make sure you squeeze the handles f...

Page 20: ...rformance and safety the AMC opening must contain a slot filler panel or a FortiGate AMC module Caution Because the FortiGate 5001A board does not support hot swapping AMC modules you must eject the FortiGate 5001A board from its chassis slot and completely open the handles before inserting or removing AMC modules or slot filler panels Table 6 FortiGate AMC module LEDs LED State Description HS Off...

Page 21: ...he slot filler panel Inserting AMC modules The following procedure describes how to install an AMC module into your FortiGate 5001A front panel AMC opening Insert the fiber transceivers into the module before inserting the module into the FortiGate unit For details on installing the transceivers see the QuickStart Guide for the AMC module To insert an AMC module into a FortiGate 5001A board Cautio...

Page 22: ...ide the module into the opening The module should glide smoothly into the opening If you encounter any resistance while sliding the module in the module could be aligned incorrectly Pull the module back out and try inserting it again 8 Press the latch on the module front panel to lock in the module 9 Insert the FortiGate 5001A board into a chassis slot Removing AMC modules Before removing an AMC m...

Page 23: ...sed and the FortiGate 5001A still does not start up the problem could be that the FortiGate 5001A cannot communicate with the chassis shelf manager This problem can only occur in an ATCA chassis that contains a shelf manager such as the FortiGate 5140 and FortiGate 5050 To correct this problem power down and then restart the chassis If you are operating a FortiGate 5000 series chassis you can powe...

Page 24: ...re metal surface on the chassis or frame 2 Remove the FortiGate 5001A board from the chassis slot See Removing a FortiGate 5001A board on page 18 You do not have to completely remove the FortiGate 5001A board from the slot however the board should be disconnected from power 3 With the FortiGate 5001A left top handle fully open pull the latch on the AMC module front panel to open the latch and pull...

Page 25: ... mode Configuring Transparent mode Upgrading FortiGate 5001A firmware FortiGate 5001A base backplane data communication Powering off the FortiGate 5001A board Registering your Fortinet product Register your Fortinet product to receive Fortinet customer services such as product updates and technical support You must also register your product for FortiGuard services such as FortiGuard Antivirus and...

Page 26: ...h the FortiGate 5001A security system until you add firewall policies In NAT Route mode firewall policies can operate in NAT mode or in Route mode In NAT mode the FortiGate firewall performs network address translation before IP packets are sent to the destination network In Route mode no translation takes place Figure 11 Example FortiGate 5001A board operating in NAT Route mode Transparent mode I...

Page 27: ...figuration tool You can use either the web based manager or the Command Line Interface CLI to configure the FortiGate board Web based manager The FortiGate 5001A web based manager is an easy to use management tool Use the web based manager to configure the FortiGate 5001A administrator password the interface addresses the default gateway and the DNS server addresses Requirements An Ethernet connec...

Page 28: ...twork you add an administrator password change the network interface IP addresses add DNS server IP addresses and if required configure basic routing Configuring NAT Route mode Use Table 8 to gather the information you need to customize NAT Route mode settings for the FortiGate 5001A security system You can use one table for each board to configure Table 7 FortiGate 5001A factory default settings ...

Page 29: ... configure interfaces 1 Go to System Network Interface 2 Select the edit icon for each interface to configure Table 8 FortiGate 5001A board NAT Route mode settings Admin Administrator Password port1 IP _____ _____ _____ _____ Netmask _____ _____ _____ _____ port2 IP _____ _____ _____ _____ Netmask _____ _____ _____ _____ Default Route Device Name of the Interface connected to the external network ...

Page 30: ... that you recorded above 3 Set Gateway to the Default Gateway IP address that you added to Table 8 on page 29 4 Select OK Using the CLI to configure NAT Route mode 1 Use the serial cable supplied with your FortiGate 5001A board to connect the FortiGate Console port to the management computer serial port 2 Start a terminal emulation program HyperTerminal on the management computer Use these setting...

Page 31: ...b or switch as the computer you will use to configure the FortiGate board 2 Configure the management computer to be on the same subnet as the port1 interface of the FortiGate 5001A board To do this change the IP address of the management computer to 192 168 1 2 and the netmask to 255 255 255 0 3 To access the FortiGate web based manager start Internet Explorer and browse to https 192 168 1 99 reme...

Page 32: ...ry and Secondary DNS server IP addresses 1 Go to System Network Options 2 Enter the Primary and Secondary DNS IP addresses that you added to Table 9 on page 31 as required and select Apply Using the CLI to configure Transparent mode 1 Use the serial cable supplied with your FortiGate 5001A board to connect the FortiGate Console port to the management computer serial port 2 Start a terminal emulati...

Page 33: ...Under System Information Firmware Version select Update 5 Type the path and filename of the firmware image file or select Browse and locate the file 6 Select OK The FortiGate 5001A board uploads the firmware image file upgrades to the new firmware version restarts and displays the FortiGate login This process takes a few minutes 7 Log into the web based manager 8 Go to System Status and check the ...

Page 34: ...munication This section describes how to configure FortiGate 5001A boards for base backplane data communication Base backplane data communication is supported for FortiGate 5001A boards installed in FortiGate 5140 FortiGate 5050 and FortiGate 5020 chassis By default the base backplane interfaces are not enabled for data communication Once the base backplane interfaces are configured for data commu...

Page 35: ...te 5001A web based manager use the following steps to enable base backplane data communication 1 Go to System Network Interface 2 Select Show backplane interfaces The base1 and base2 backplane interfaces now appear in all Interface lists You can now configure the base backplane interfaces and add routes firewall policies and other configuration settings using these interfaces Figure 13 FortiGate 5...

Page 36: ...enabled for data communication Once the fabric backplane interfaces are configured for data communication you can operate and configure them in the same way as any FortiGate 5001A interfaces Although not recommended you can use fabric backplane interfaces for data communication and HA heartbeat communication at the same time For more details and configuration examples of FortiGate 5001A fabric bac...

Page 37: ...iSwitch 5003A board receives the heartbeat packets to verify that the FortiGate 5001A board is still active The FortiGate 5001A board sends 10 packets per second from each fabric interface The packets are type 255 bridge protocol data unit BPDU packets 1 Enter the following command to enable sending heartbeat packets config system global set fortiswitch heartbeat enable end Powering off the FortiG...

Page 38: ...FortiGate 5001A Security System Guide 38 01 30000 83456 20081023 Powering off the FortiGate 5001A board Quick Configuration Guide ...

Page 39: ...le from the Fortinet Knowledge Center The knowledge center contains troubleshooting and how to articles FAQs technical notes and more Visit the Fortinet Knowledge Center at http kc forticare com Comments on Fortinet technical documentation Please send information about any errors or omissions in this document or any Fortinet technical documentation to techdoc fortinet com Customer service and tech...

Page 40: ...Guard are registered trademarks and Dynamic Threat Prevention System DTPS APSecure FortiASIC FortiBIOS FortiBridge FortiClient FortiGate FortiGate Unified Threat Management System FortiGuard Antispam FortiGuard Antivirus FortiGuard Intrusion FortiGuard Web FortiLog FortiAnalyzer FortiManager FortiOS FortiPartner FortiProtect FortiReporter FortiResponse FortiShield and FortiVoIP are trademarks of F...

Reviews:

No comments

Related manuals for FortiGate 5001A

Fortinet FortiGate 60C-SFP Quick Start Manual preview
FortiGate 60C-SFP
Brand: Fortinet Pages: 14
Moxa Technologies NPort 6150 Series Quick Installation Manual preview
NPort 6150 Series
Brand: Moxa Technologies Pages: 2
Cisco Catalyst 3130 Software Configuration Manual preview
Catalyst 3130
Brand: Cisco Pages: 1354
Cisco Catalyst 3120 Software Manual preview
Catalyst 3120
Brand: Cisco Pages: 1224
H3C SecPath M9006 Manual preview
SecPath M9006
Brand: H3C Pages: 90
Dell NSA E8500 Getting Started Manual preview
NSA E8500
Brand: Dell Pages: 74
Dell SonicWALL NSA 6600 Getting Started Manual preview
SonicWALL NSA 6600
Brand: Dell Pages: 57
Dell SonicWALL Administration Manual preview
SonicWALL
Brand: Dell Pages: 49
Dell SonicWALL GX250 Manual preview
SonicWALL GX250
Brand: Dell Pages: 200
Blockbit BB 10-C Appliance Manual preview
BB 10-C
Brand: Blockbit Pages: 29
Barracuda CloudGen F93R Quick Start Manual preview
CloudGen F93R
Brand: Barracuda Pages: 6
IBM QRadar XGS 5200 Replacement Instructions Manual preview
QRadar XGS 5200
Brand: IBM Pages: 8
Juniper NS-2G24FE Manual preview
NS-2G24FE
Brand: Juniper Pages: 17

Brands by name

Popular brands

Load more brands