AnsweredHot!"Any" option not available FG100E

Author
dvid9976
New Member
  • Total Posts : 2
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/06/18 14:54:34
  • Status: offline
2018/06/18 15:03:29 (permalink) 5.6
0

"Any" option not available FG100E

hello there
 
I'm completely new to Fortigate, and have some very limited experience.
I configured a bunch of FG60E with very basic stuff, because they were meant to act like basic routers.
I used to configure an ANY ANY All sources All destinations Allways allow policy on those FG60E running 5.6.3
 
The thing is that I had to aply the same "router" config to a FG100E (again running 5.6.3), and there is no "any" interface option under IPV4 Policy.
Is that normal? or am I missing something.
 
thank you very much in advance
 
regards
 
#1
Toshi Esumi
Expert Member
  • Total Posts : 1220
  • Scores: 82
  • Reward points: 0
  • Joined: 2014/11/06 09:56:42
  • Status: offline
Re: "Any" option not available FG100E 2018/06/18 22:26:05 (permalink) ☼ Best Answerby dvid9976 2018/06/20 08:09:31
0
Have you tried turning on "Multiple Interface Policies" visibility under System->Feature Visibility? It's only for GUI visibility so you should still be able to configure "any" interfaces in policies with CLI.
#2
ede_pfau
Expert Member
  • Total Posts : 5721
  • Scores: 387
  • Reward points: 0
  • Joined: 2004/03/09 01:20:18
  • Location: Heidelberg, Germany
  • Status: offline
Re: "Any" option not available FG100E 2018/06/19 02:22:00 (permalink)
0
You should be glad that at the moment you can't see this option.
As a good advice: try to avoid the 'any' interface. Basically, you lose control over which interface traffic is flowing, a nightmare if you need to debug. One or two explicit policies won't kill anyone.

Ede

" Kernel panic: Aiee, killing interrupt handler!"
#3
dvid9976
New Member
  • Total Posts : 2
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/06/18 14:54:34
  • Status: offline
Re: "Any" option not available FG100E 2018/06/20 08:15:42 (permalink)
0
@Toshi Esumi you nailed it mate
 
I obviously did not tried that :-) this any-any option is what I need at this stage.
I'm in the middle of a mass deployment for a customer, and Fortimanager is planned on later stages to configure all stuff and appropiated policies.
 
Thank you very much for your help!!
 
Best Regards
 
DA
 
#4
Jump to:
© 2018 APG vNext Commercial Version 5.5