1. VDOM enable
conf sys global
set vdom-admin enable
end
2. Create VDOM
conf vdom
edit test
3. VDOM mode setting
TP
conf vdom
edit test
conf sys setting
set opmode transparent
set manageip 10.10.10.1/32
end
end
4. Management Port setting
conf sys interface
edit mgmt
set vdom root
set ip 10.10.10.1/24
next
edit port1
set vdom test
next
edit port2
set vdom test
next
edit port4
set ip 192.168.12.1/24
set allowaccess ping https ssh snmp telnet
next
end
5. Sessins-sync setting
conf system session-sync
edit 1
set peerip 192.168.12.2
set syncvd test
next
end
6. HA setting
conf sys ha
set hbdev port3 100
set session-sync-dev port4
set hb-interval 4
set hb-lost-threshold 12
set ha-uptime-diff-margin 1
set session-pickup enable
set session-pickup-connectionless enable
set session-pickup-expectation enable
set session-pickup-nat enable
set standalone-config-sync enable
set override disable
end
'업무이야기 > Security' 카테고리의 다른 글
FortiAP Configuration (0) | 2015.12.28 |
---|---|
FortiGate diagnose CLI (0) | 2015.12.28 |
FortiAnalyzer 점검 CLI (0) | 2015.12.28 |
fortigate File reached uncompressed size limit (0) | 2015.12.28 |
FortiGate 점점 CLI (2) | 2015.12.28 |