Fortinet FortiGate-60M, Quick Start Manual

NAT/Route mode

The internal interface IP address and netmask must be valid for the internal network. 

Transparent mode

The management IP address and netmask must be valid for the network from which 

you will manage the FortiGate-60M. 

General settings

A default gateway is required for the FortiGate unit to route connections to the Internet.

Factory default settings

Internal Interface:

IP:

____.____.____.____

Netmask:

____.____.____.____

WAN1 Interface:

IP:

____.____.____.____

Netmask:

____.____.____.____

WAN2 Interface

IP:

____.____.____.____

Netmask:

____.____.____.____

DMZ

IP:

____.____.____.____

Netmask:

____.____.____.____

Management IP:

IP:

____.____.____.____

Netmask:

____.____.____.____

Administrator password:

Network Settings: Default Gateway:

____.____.____.____

Primary DNS Server:

____.____.____.____

Secondary DNS Server:

____.____.____.____

NAT/Route mode

Transparent mode

Internal interface

192.168.1.99

Management IP

10.10.10.1

WAN1 interface

192.168.100.99

Administrative account settings

WAN2 interface

192.168.101.99

User name

admin

DMZ interface

10.10.10.1

Password

(none)

DHCP server on Internal 
interface

192.168.1.110 – 
192.168.1.210

2. Configure the management computer to be on the same subnet as the internal interface of the FortiGate-60M. To do this, 

change the IP address of the management computer to 192.168.1.2 and the netmask to 255.255.255.0.

3. To access the FortiGate web-based manager, start Internet Explorer and browse to https://192.168.1.99 (remember to 

include the “s” in https://). 

4. Type admin in the Name field and select Login. 

Web-based manager 

and Setup Wizard

Use these tables to record your FortiGate-60M configuration settings. 

NAT/Route mode

To configure the FortiGate-60M using the Setup Wizard, select the 

Easy Setup Wizard button and follow the prompts.

To change the administrator password

1. Go to 

System > Admin > Administrators

.

2. Select Change Password for the admin administrator and enter a new password.

To configure interfaces

1. Go to 

System > Network > Interface

.

2. Select the edit icon for each interface to configure.
3. Select one of the following Addressing modes (see the online help for information):

•

Manual: enter a static IP address and netmask, select OK

•

DHCP: select DHCP and any required settings

•

PPPoE: select PPPoE and enter a username and password and any other 

required settings

To configure the Primary and Secondary DNS server IP addresses

1. Go to 

System > Network > DNS

, enter the Primary and Secondary DNS IP 

addresses that you recorded above and select Apply.

To configure a Default Gateway

1. Go to 

Router > Static

 and select Edit icon for the static route.

2. Set Gateway to the Default Gateway IP address recorded above and select OK.

Transparent mode 

To switch from NAT/route mode to transparent mode

1. Go to 

System > Status, 

select Change beside Operation Mode, and select OK.

2. Change the IP address of the management computer to 10.10.10.2 and use 

Internet Explorer to browse to https://10.10.10.1.

To configure the FortiGate-60M using the Setup Wizard, select the Easy Setup Wizard 

button and follow the prompts.

To change the administrator password

1. Go to 

System > Admin > Administrators

.

2. Select Change Password for the admin administrator and enter a new password.

To configure the management interface

1. Go to 

System > Network > Management

.

2. Enter the Management IP address and netmask that you recorded above.
3. Select administrative access options if required and select OK.

To configure the Primary and Secondary DNS server IP addresses

1. Go to 

System > Network > DNS

, enter the Primary and Secondary DNS IP 

addresses that you recorded above and select Apply.

To configure a Default Gateway

1. Go to 

System > Network > Management

.

2. Set Default Gateway to the Default Gateway IP address that you recorded above 

and select OK.

Select the 

Easy Setup Wizard

NAT/Route mode

1. Configure the FortiGate-60M internal interface. 

config system interface

edit internal 

set mode static

set ip <intf_ip> <netmask_ip>

end

2. Repeat to configure each interface, for example, to configure the WAN1 interface.

config system interface

edit wan1

...

3. Configure the primary and secondary DNS server IP addresses.

config system dns

set primary <dns-server_ip>

set secondary <dns-server_ip>

end

4. Configure the default gateway.

config router static

edit 1

set gateway <gateway_ip>

end

Transparent mode 

1. Change from NAT/Route mode to Transparent mode.

config system global

set opmode transparent

end

2. Wait a moment and then log in again at the prompt.
3. Configure the Management IP address. 

config system manageip

set ip <mng_ip> <netmask>

end

Configure the DNS server IP address.

config system dns 

set primary <dns-server_ip>

set secondary <dns-server_ip>

end

4. Configure the default route.

config router static

edit 1

set gateway <gateway_ip>

end

Using the

Command Line Interface

1. Use the serial cable to connect the FortiGate Console port to the management computer serial port. 
2. Start a terminal emulation program (HyperTerminal) on the management computer. Use these settings: 

Baud Rate (bps) 9600, Data bits 8, Parity None, Stop bits 1, and Flow Control None.

3. At the Login: prompt, type 

admin

 and press Enter twice (no password required).

1. Connect the FortiGate-60M internal interface to a management computer ethernet interface. 

You can connect the management computer directly to the FortiGate-60M internal interface 

4-port switch. 

Note: 

If you change the internal interface IP address (NAT/Route mode) or management IP address (Transparent mode), you must use this address to reconnect to the web-based manager and Setup Wizard. 

You might also have to change the IP address of the management computer to be on the same subnet as the new IP address.

Collecting information

5

Configuring the FortiGate-60M

6

Web-based manager and Setup Wizard

Using the Setup Wizard you can add basic settings by stepping through the wizard 

pages and filling in the information required.
The FortiGate web-based manager is an easy to use management tool. Use it to 

configure the administrator password, interface addresses, the default gateway 

address, and the DNS server addresses.

Requirements:

 An Ethernet connection between the FortiGate-60M and a 

management computer running Internet Explorer version 6.0 or higher.

Command Line Interface (CLI)

The CLI is a full-featured management tool. 
Use it to configure the administrator password, the interface addresses, the default 

gateway address, and the DNS server addresses. To configure advanced settings, see 

the Documentation CD-ROM.

Requirements:

 An RJ-45-serial connection between the FortiGate-60M and 

management computer and a terminal emulation application (HyperTerminal for 

Windows) on the management computer. 

Choose among two different tools to configure the FortiGate-60M. 

Choosing a configuration tool

4

Congratulations!
You have finished configuring the basic settings. Your network is now protected from 

Internet-based threats. To explore the full range of configuration options, see the online help 

or the Documentation CD-ROM.

Completing the configuration

7

•

To restart the unit, go to 

System > Maintenance > 

ShutDown 

and

select Reboot.

•

To reset the unit, go to 

System > Maintenance > 

Shutdown 

and select Reset to factory default.

Restarting the FortiGate-60M

Should you mistakenly change a network setting and cannot connect to the 

unit, reboot the unit and try again or to set the unit back to factory defaults and 

start over again.

CLI: 

execute reboot

CLI: 

execute factoryreset