Adding custom icmp services, Adding custom ip services, Grouping services – Fortinet FortiGate 4000 User Manual
Page 209
Firewall configuration
Services
FortiGate-4000 Installation and Configuration Guide
209
Adding custom ICMP services
Add a custom ICMP service if you need to create a policy for a service that is not in
the predefined service list.
To add a custom ICMP service
1
Go to Firewall > Service > Custom.
2
Select ICMP from the Protocol list.
3
Select New.
4
Type a Name for the new custom ICMP service. This name appears in the service list
used when you add a policy.
The name can contain numbers (0-9), uppercase and lowercase letters (A-Z, a-z), and
the special characters - and _. Other special characters and spaces are not allowed.
5
Specify the ICMP type and code for the service.
6
Select OK to add the custom service.
You can now add this custom service to a policy.
Adding custom IP services
Add a custom IP service if you need to create a policy for a service that is not in the
predefined service list.
To add a custom IP service
1
Go to Firewall > Service > Custom.
2
Select IP from the Protocol list.
3
Select New.
4
Type a Name for the new custom IP service. This name appears in the service list
used when you add a policy.
The name can contain numbers (0-9), uppercase and lowercase letters (A-Z, a-z), and
the special characters - and _. Other special characters and spaces are not allowed.
5
Specify the IP protocol number for the service.
6
Select OK to add the custom service.
You can now add this custom service to a policy.
Grouping services
To make it easier to add policies, you can create groups of services and then add one
policy to provide or block access for all the services in the group. A service group can
contain predefined services and custom services in any combination. You cannot add
service groups to another service group.
To group services
1
Go to Firewall > Service > Group.
2
Select New.