Things to remember when creating a policy with custom services in a FortiGate firewall

Writing them down here as I always seem to be forgetting them. And than thus having to bother the great guys at www.securelayers.com

  • Check if NAT needs to be enabled
  • In case of recently created custom service’s; check if the port number is only filled in in the source. NOT in destination or both.\
  • Make sure the policies are in the correct order. Check if another policy which also applies to the traffic isn’t above is.

My mind in writing… Mainly so I don't forget :P