102
Fortinet Inc.
Configuring routing
Network configuration
7
Set Device #2 to the FortiGate interface through which to route traffic to connect to
Gateway #2.
You can select the name of an interface or Auto (the default). If you select the name of
an interface, the traffic is routed to that interface. If you select Auto the system selects
the interface according to the following rules:
• If the Gateway #2 IP address is on the same subnet as a FortiGate interface, the
system sends the traffic to that interface.
• If the Gateway #2 IP address is not on the same subnet as a FortiGate interface,
the system routes the traffic to the external interface, using the default route.
You can use Device #2 to send packets to an interface that is on a different subnet
than the destination IP address of the packets without routing them using the default
route.
8
Select OK to save the route.
Adding routes in Transparent mode
Use the following procedure to add routes when operating the FortiGate unit in
Transparent mode.
To add a route in Transparent mode
1
Go to
System > Network > Routing
.
2
Select New.
3
Enter the Destination IP address and Netmask for the route.
4
Enter the Gateway IP address for the route.
5
Select OK to save the new route.
6
Repeat steps 1 to 5 to add more routes as required.
Configuring the routing table
The routing table shows the destination IP address and mask of each route that you
add, as well as the gateways and devices added to the route. The routing table also
displays the gateway connection status. A green check mark indicates that the
FortiGate unit has used the ping server and dead gateway detection to determine that
it can connect to the gateway. A red X means that a connection cannot be established.
A blue question mark means that the connection status is unknown. For more
information, see
“Adding a ping server to an interface” on page 97
.
The FortiGate unit assigns routes using a best match algorithm based on the
destination address of the packet and the destination address of the route. To select a
route for a packet, the FortiGate unit searches the routing table for a route that best
matches the destination address of the packet. If a match is not found, the FortiGate
unit routes the packet using the default route.
Note:
Any two routes in the routing table must differ by something other than just the gateway to
be simultaneously active. If two routes added to the routing table are identical except for their
gateway IP addresses, only the route closer to the top of the routing table can be active.
Note:
Arrange routes in the routing table from more specific to more general. For information
about arranging routes in the routing table, see
“Configuring the routing table”
.
Содержание FortiGate 50A
Страница 12: ...Contents 12 Fortinet Inc ...
Страница 32: ...32 Fortinet Inc Next steps Getting started ...
Страница 40: ...40 Fortinet Inc Completing the configuration NAT Route mode installation ...
Страница 72: ...72 Fortinet Inc Session list System status ...
Страница 112: ...112 Fortinet Inc Configuring the modem interface Network configuration ...
Страница 120: ...120 Fortinet Inc Adding RIP filters RIP configuration ...
Страница 170: ...170 Fortinet Inc Content profiles Firewall configuration ...
Страница 224: ...224 Fortinet Inc Logging attacks Network Intrusion Detection System NIDS ...
Страница 230: ...230 Fortinet Inc Viewing the virus list Antivirus protection ...
Страница 244: ...244 Fortinet Inc Exempt URL list Web filtering ...
Страница 262: ...262 Fortinet Inc Glossary ...
Страница 272: ...272 Fortinet Inc Index ...