Fortinet black logo

Administration Guide

Create new policy packages

Create new policy packages

To create a new global policy package:
  1. Ensure that you are in the Global ADOM.
  2. Go to Policy & Objects > Policy Packages.
  3. From the Policy Package menu select New Package or right-click in the tree menu and select New Package. The Create New Policy Package window opens.
  4. Enter a name for the new global policy package.
  5. (Optional) Click the In Folder button to select a folder.
  6. (Optional) Select the Central NAT checkbox to enable Central SNAT and Central DNAT policy types.
  7. Click OK to add the policy package.
To create a new policy package:
  1. Ensure that you are in the correct ADOM.
  2. Go to Policy & Objects > Policy Packages.
  3. From the Policy Package menu select New Package or right-click in the tree menu and select New Package. The Create New Policy Package window opens.

  4. Configure the following details, then click OK to create the policy package.

    Name

    Enter a name for the new policy package.

    In Folder

    Optionally, click the In Folder button to select a folder for the package.

    Central NAT

    Select the Central NAT checkbox to enable Central SNAT and Central DNAT policy types.

    Inspection Mode

    Select Flow-based (default) or Proxy for the inspection mode.

    This option is only available for version 5.6 and later ADOMs.

    For more information on inspection modes, see the FortiOS Handbook, available in the Fortinet Document Library.

    NGFW Mode

    Select the NGFW mode, Profile-based (default) or Policy-based.

    This option is only available for version 5.6 and later ADOMs when Inspection Mode is Flow-based.

    SSL/SSH Inspection

    Select an SSL/SSH inspection type from the dropdown list.

    This option is only available for version 5.6 and later ADOMs when NGFW Mode is Policy-based.

Create new policy packages

To create a new global policy package:
  1. Ensure that you are in the Global ADOM.
  2. Go to Policy & Objects > Policy Packages.
  3. From the Policy Package menu select New Package or right-click in the tree menu and select New Package. The Create New Policy Package window opens.
  4. Enter a name for the new global policy package.
  5. (Optional) Click the In Folder button to select a folder.
  6. (Optional) Select the Central NAT checkbox to enable Central SNAT and Central DNAT policy types.
  7. Click OK to add the policy package.
To create a new policy package:
  1. Ensure that you are in the correct ADOM.
  2. Go to Policy & Objects > Policy Packages.
  3. From the Policy Package menu select New Package or right-click in the tree menu and select New Package. The Create New Policy Package window opens.

  4. Configure the following details, then click OK to create the policy package.

    Name

    Enter a name for the new policy package.

    In Folder

    Optionally, click the In Folder button to select a folder for the package.

    Central NAT

    Select the Central NAT checkbox to enable Central SNAT and Central DNAT policy types.

    Inspection Mode

    Select Flow-based (default) or Proxy for the inspection mode.

    This option is only available for version 5.6 and later ADOMs.

    For more information on inspection modes, see the FortiOS Handbook, available in the Fortinet Document Library.

    NGFW Mode

    Select the NGFW mode, Profile-based (default) or Policy-based.

    This option is only available for version 5.6 and later ADOMs when Inspection Mode is Flow-based.

    SSL/SSH Inspection

    Select an SSL/SSH inspection type from the dropdown list.

    This option is only available for version 5.6 and later ADOMs when NGFW Mode is Policy-based.