How to enable GUI Access on Fortigate / VM Firewall Through CLI console
When installing Fortigate-VM you will need to start the settings from CLI in order to get GUI access, you will need to setup interface for admin access. here is the steps :
- Fortinet_Lab # config system interface
- Fortinet_Lab (interface) # edit port1
- Fortinet_Lab (port1) # set ip 10.80.144.150/24
- Fortinet_Lab (port1) # set allowaccess ping http https fgfm
- ssh SSH access.
- snmp SNMP access.
- telnet TELNET access.
- radius-acct RADIUS accounting access.
- probe-response Probe access.
- capwap CAPWAP access.
- ftm FTM access.
- Fortinet_Lab (port1) # set allowaccess ping http https fgfm ftm ssh >> Remember to allow the https and http connection to firewall on this port. You can also allow other options to connect to firewall but those will need to be specifically allowed under each port where you want to connect from your network. For example we have allowed ping, ssh etc on firewall to this port (port1).
- Fortinet_Lab (port1) # end
To Verify setting got configure :
Fortinet_Lab # show system interface port1
config system interface
set vdom “root”
set ip 10.80.144.150 255.255.255.0
set allowaccess ping https ssh http fgfm ftm
set mode static
set type physical
set snmp-index 1
Now configure the static route :
Fortinet_Lab # config router static
Fortinet_Lab (static) # edit 1
new entry ‘1’ added
Fortinet_Lab (1) # set gateway 10.80.144.1
Fortinet_Lab (1) # set dst 0.0.0.0/0
Fortinet_Lab (1) # set device port1
Fortinet_Lab (1) # end
Verify the route:
Fortinet_Lab # show router static
config router static
set gateway 10.80.144.1
set device “port1”
Now check ping out :
Fortinet_Lab #execute ping 126.96.36.199
Now you will be able to access the firewall on port 80 only since there is no certificate create yet, so start access it from port 80
Leave a Reply