■Fortigate-60Cはメチャメチャ静かなUTM。
本当に動いているのか心配な暗い静か。
しかし起動やGUIの動作は80Cよりも遅い。
■初期設定を簡単に済ませる。
config system global
set language japanes
set timezone 60
end
config system interface
edit internal
set ip 172.31.31.252 255.255.255.0
set allowaccess ping http https
next
edit wan1
set mode static
set ip 192.168.1.250 255.255.255.0
end
config router static
edit 0
set device wan1
set gateway 192.168.1.254
next
edit 0
set device internal
set gateway 172.31.31.254
set dst 172.31.31.0 255.255.255.0
end
■システムのチェック。
Version: FortiGate-60C v5.2.3,build0670,150318 (GA)
ASIC version: CP0
ASIC SRAM: 64M
RAM: 439 MB
total: used: free: shared: buffers: cached: shm:
Mem: 461193216 199368704 261824512 0 1392640 100204544 93995008
Speed :100
Speed :10
Speed :1000
model name : FortiSOC
Processor : FA526id(wb) rev 1 (v4l)
model name : FortiSOC
BogoMIPS : 524.28
Hardware : FSoC_ASIC
■DMZの10Mbpsというのはちょっとと思ったけど、リンクアップしたら100Mになった。
※対向が100M。最大1Gまで。
config system interface
edit dmz
set ip 192.168.102.252 255.255.255.0
end
config router static
edit 0
set device dmz
set dst 192.168.102.0 255.255.255.0
set gateway 192.168.102.254
end
Speed :100
■時刻同期
config system ntp
set ntpsync enable
set type custom
set syncinterval 60
config ntpserver
edit 1
set server "ntp.nict.jp"
next
end
set source-ip 192.168.1.250
end
waiting for 679 seconds ...
synchronized: yes, ntpsync: enabled, server-mode: disabled
ipv6 server(ntp.nict.jp) 2001:df0:232:eea0::fff4 -- reachable(0xfe) S:0 T:679
no data
ipv4 server(ntp.nict.jp) 133.243.238.163 -- reachable(0xff) S:1 T:679 selected
server-version=4, stratum=1
reference time is d93bda4a.0 -- UTC Mon Jun 29 14:52:58 2015
clock offset is 1520.633015 sec, root delay is 0 msec
root dispersion is 0 msec, peer dispersion is 12 msec
Virus-DB: 26.00365(2015-06-29 06:13)
Extended DB: 26.00365(2015-06-29 06:12)
IPS-DB: 6.00660(2015-06-25 00:50)
Botnet DB: 2.00333(2015-06-28 20:30)
System time: Tue Jun 30 00:27:30 2015