Fortinet 100A Router User Manual


 
System virtual domain Configuring firewall policies for a virtual domain
FortiGate-100A Administration Guide 01-28007-0068-20041203 139
6 Select Create new to add firewall policies to the current virtual domain.
See “Policy” on page 190. You can only add firewall policies for the physical
interfaces, VLAN subinterfaces, or zones added to the current virtual domain. The
firewall policies that you add are only visible when you are viewing the current virtual
domain. Network traffic accepted by the interfaces and VLAN subinterfaces added to
this virtual domain is controlled by the firewall policies added to this virtual domain
To add firewall addresses to a virtual domain
The following procedure applies to NAT/Route and Transparent mode.
1 Go to System > Virtual domain > Virtual domains.
2 Select Change following the current virtual domain name above the table.
3 Choose the virtual domain for which to configure firewall addresses.
4 Select OK.
5 Go to Firewall > Address.
6 Add new firewall addresses, address ranges, and address groups to the current virtual
domain. See “Address” on page 198.
To add IP pools to a virtual domain
The following procedure applies to NAT/Route mode.
1 Go to System > Virtual domain > Virtual domains.
2 Select Change following the current virtual domain name above the table.
3 Choose the virtual domain for which to configure firewall IP pools.
4 Select OK.
5 Go to Firewall > IP Pool.
6 Add new IP pools as required for the current virtual domain. See “IP pool” on
page 219.
To add Virtual IPs to a virtual domain
The following procedure applies to NAT/Route mode.
1 Go to System > Virtual domain > Virtual domains.
2 Select Change following the current virtual domain name above the table.
3 Choose the virtual domain for which to configure virtual IPs.
4 Select OK.
5 Go to Firewall > Virtual IP.
6 Add new virtual IPs as required for the current virtual domain. See “Virtual IP” on
page 214.