Fortinet black logo

Administration Guide

Normalized interfaces

Normalized interfaces

A normalized interface defines mapping rules. In mapping rules, interfaces are mapped per-device and/or per platform. You can have both per-device and per-platform mappings in a normalized interface. When the normalized interface is used in a policy, the per-device mappings have higher priority than per-platform mappings. The first match is used.

Default normalized interfaces are created when ADOMs are created. Default normalized interfaces contain a number of per-platform mapping rules for all FortiGate models. For example, port1 is mapped to port1, and WAN is mapped to WAN in default per-platform mapping rules. Default per-platform mapping rules allow you to install policies to FortiGates without first creating custom mapping rules.

You can map normalized interface names to different physical interface names on different FortiGate models. For example, you can map a normalized interface named LAN to port1 on one FortiGate and to port2 on another FortiGate.

You can delete default normalized interfaces and create new normalized interfaces. You can also delete per-platform mappings in a default normalized interface.

Zones are created using Device Manager, and you can map zones to normalized interfaces. See also Device zones.

You can also select normalized interfaces when you create virtual wire pairs.

This section contains the following topics:

Normalized interfaces

A normalized interface defines mapping rules. In mapping rules, interfaces are mapped per-device and/or per platform. You can have both per-device and per-platform mappings in a normalized interface. When the normalized interface is used in a policy, the per-device mappings have higher priority than per-platform mappings. The first match is used.

Default normalized interfaces are created when ADOMs are created. Default normalized interfaces contain a number of per-platform mapping rules for all FortiGate models. For example, port1 is mapped to port1, and WAN is mapped to WAN in default per-platform mapping rules. Default per-platform mapping rules allow you to install policies to FortiGates without first creating custom mapping rules.

You can map normalized interface names to different physical interface names on different FortiGate models. For example, you can map a normalized interface named LAN to port1 on one FortiGate and to port2 on another FortiGate.

You can delete default normalized interfaces and create new normalized interfaces. You can also delete per-platform mappings in a default normalized interface.

Zones are created using Device Manager, and you can map zones to normalized interfaces. See also Device zones.

You can also select normalized interfaces when you create virtual wire pairs.

This section contains the following topics: