Fortinet FortiGate-5000, FortiGate-5001SX, FortiGate-5001, FortiGate-5001A, FortiGate-5001FA2 Quick Manual

5

5

QUICK GUIDE

13 11 9 7 5 3 1 2 4 6 8 10 12 14

PWR

PWR

PWR

PWR

PWR

PWR

ACC

ACC

CONSOLE

USB

1 2

3 4

5 6 7 8

STA IPM

STA IPM

ACC

ACC

CONSOLE

CONSOLE

USB

USB

1 2

1 2

3 4

3 4

5 6 7 8

5 6 7 8

STA IPM

STA IPM

ACC

ACC

CONSOLE

CONSOLE

USB

USB

1 2

1 2

3 4

3 4

5 6 7 8

5 6 7 8

STA IPM

MANAGEMENT

MANAGEMENT

CONSOLE

E

E

T

T

H

H

O

O

USB

SYSTEM

SYSTEM

CONSOLE

CONSOLE

R

R

S

S

1 2

2

2

3

3

2

2

Z

Z

R

R

E

E

0

0

Z

Z

R

R

E

E

1

1

3 4

Z

Z

R

R

E

E

2

2

E2

E1

E2

E1

1514

1514

1312

1312

1110

1110

98

98

76

76

5 6 7 8

54

54

32

32

10

10

ZRE

ZRE

OKCLK

OKCLK

INTEXT

INTEXT

FLT

FLT

FLT

FLT

HOT SWAP

HOT SWAP

RESET

RESET

LED MODE

LED MODE

STA IPM

PWRACC

PWRACC

PWRACC

CONSOLE

CONSOLE

USB

USB

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

STA IPM

STA IPM

STA IPM

PWRACC

PWRACC

CONSOLE

1 2 3 4 5 6 7 8

CONSOLE

CONSOLE

USB

USB

USB

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

STA IPM

STA IPM

FortiGate-5000 Series

5140

USB

1 2 3 4 5 6 7 8

CONSOLE

PWRACC

5

Crit.
Maj.
Min.

PWRACC

3
2
1

CONSOLE

Alarms

Rst

USB

1 2 3 4 5 6 7 8

4

3

2

1

Link
Act

100

ETH 0

Prim.
ShMC

Stat.

Link

Act

100

ETH 0

STA IPM

Sec.
ShMC

Stat.

ShMC

2

USB

1 2 3 4 5 6 7 8

CONSOLE

PWRACC

USB

1 2 3 4 5 6 7 8

CONSOLE

PWRACC

ETH

O

RS232ZRE0ZRE1ZRE2

SYSTEM

CONSOLE

MANAGEMENT

ETH

O

RS232ZRE0ZRE1ZRE2

SYSTEM

CONSOLE

MANAGEMENT

USB

CONSOLE

RESET

STATUS

PWR

USB

CONSOLE

RESET

STATUS

PWR

162

162

E1

9876543210

1514

1312

1110

E2

E1

9876543210

1514

1312

1110

E2

3 4 5 6

3 4 5 6

STA IPM

STA IPM

STA IPM

OKCLK

INTEXT

FLT

HOT SWAP

RESET

ZRE

FLT

OKCLK

INTEXT

FLT

HOT SWAP

RESET

ZRE

FLT

Critical

Major

Minor

Alarm

Alarm

Console Ethernet

Reset

ON/OFF

IPM

ON/OFF

IPM

POWER

LED MODE

LED MODE

ShMC

Hot Swap
Status

1

PSUA

PSU B

ALT

ALT

A high-level guide to all three FortiGate-5000 series chassis and the FortiGate and FortiSwitch modules that you can
install in them. For detailed information about the FortiGate-5000 series hardware, see the FortiGate-5000 Series

Hardware Guide and the FortiGate-5000 Installation Guide.

www.fortinet.com

FortiGate-5000 Series Quick Guide

!

15 March 2006
01-00000-0294-20060315

© Copyright 2006 Fortinet, Inc. All rights reserved. No part of this
publication including text, examples, diagrams or illustrations may be
reproduced, transmitted, or translated in any form or by any means,
electronic, mechanical, manual, optical or otherwise, for any purpose,
without prior written permission of Fortinet, Inc.

Trademarks

Dynamic Threat Prevention System (DTPS), APSecure, FortiASIC,
FortiBIOS, FortiBridge, FortiClient, FortiGate, FortiGate Unified Threat
Management System, FortiGuard, FortiGuard-Antispam, FortiGuard­Antivirus, FortiGuard-Intrusion, FortiGuard-Web, FortiLog, FortiAnalyzer,
FortiManager, Fortinet, FortiOS, FortiPartner, FortiProtect, Forti Repor ter ,
FortiResponse, FortiShield, FortiVoIP, and FortiWiFi are trademarks of
Fortinet, Inc. in the United States and/or other countries. The names of
actual companies and products mentioned herein may be the trademarks
of their respective owners.

Regulatory compliance

FCC Class A Part 15 CSA/CUS

Caution: If you install a battery that is not the correct type, it could
explode. Dispose of used batteries according to local regulations.

Version Date Description of changes

1 Feb 14, 2006 First release
2 March 15,

2006

• Corrected gigabit ethernet interface
specification (changed 1000Base-TX to
1000Base-T).

• Adjusted some page formatting.

Contents

Contents

Introduction........................................................................................ 5

FortiGate-5140 chassis...................................................................... 7

FortiGate-5050 chassis.................................................................... 13

FortiGate-5020 chassis.................................................................... 19

FortiGate-5001SX security system................................................. 21

FortiGate-5001FA2 security system............................................... 25

FortiGate-5002FB2 security system............................................... 29

FortiSwitch-5003 module................................................................. 33

FortiGate-5000 Series Quick Guide
01-00000-0294-20060315 3

Contents

FortiGate-5000 Series Quick Guide

4 01-00000-0294-20060315

Introduction Fortinet documentation

Introduction

This FortiGate-5000 series Quick Guide is a high-level guide to all three
FortiGate-5000 series chassis and the FortiGate and FortiSwitch modules that
you can install in them. For detailed information about the FortiGate-5000 series
hardware, see the FortiGate-5000 Series Hardware Guide and the FortiGate-

5000 Installation Guide.

Fortinet documentation

The most up-to-date publications and previous releases of Fortinet product
documentation are available from the Fortinet Technical Documentation web site
at http://docs.forticare.com.

Fortinet Knowledge Center

Additional Fortinet technical documentation is available from the Fortinet
Knowledge Center. The knowledge center contains troubleshooting and how-to
articles, FAQs, technical notes, and more. Visit the Fortinet Knowledge Center at

http://kc.forticare.com.

Customer service and technical support

Fortinet Technical Support provides services designed to make sure that your
Fortinet systems install quickly, configure easily, and operate reliably in your
network.

Please visit the Fortinet Technical Support web site at http://support.fortinet.com
to learn about the technical support services that Fortinet provides.

FortiGate-5000 Series Quick Guide
01-00000-0294-20060315 5

Customer service and technical support Introduction

FortiGate-5000 Series Quick Guide

6 01-00000-0294-20060315

FortiGate-5140 chassis

FortiGate-5140 chassis

You can install up to 14 FortiGate-5000 series modules in the 14 slots of the
FortiGate-5140 ATCA chassis. The FortiGate-5140 is a 12U chassis that co ntains
two redundant hot swappable DC power entry modules that connect to -48 VDC
Data Center DC power. The FortiGate-5140 chassis also includes three hot
swappable cooling fan trays. If all 14 slots contain FortiGate-5001SX modules, the
FortiGate-5140 chassis provides a total of 112 Gigabit ethernet FortiGate
interfaces.

You can also install a FortiSwitch-5003 module in the FortiGate-5140 chassis to
provide HA heartbeat communications. You can add a second FortiSwitch-5003
module for redundancy. The First FortiSwitch-5003 module is installed in slot 1,
the second in slot 2.

The FortiGate-5140 chassis requires -48VDC Data Center DC power. If DC power
is not available you can install a FortiGate-5053 power converter tray (purchased
separately) with FortiGate-5140 power supplies.

Figure 1 shows the front of a FortiGate-5140 chassis. Two FortiSwitch-5003

modules are installed in slots 1 and 2. Twelve FortiGate-5001SX modules are
installed in slots 3 to 14.

Figure 1: FortiGate-5140 chassis front panel

FortiGate-5001SX

modules

slots 3, 5, 7, 9,

11, and 13

FortiSwitch-5003

modules

FortiGate-5001SX

modules

slots 4, 6, 8, 10,

12, and 14

slots 1 and 2

13 11 9 7 5 3 1 2 4 6 8 10 12 14

PWRACC

PWRACC

PWRACC

CONSOLE

USB

1 2 3 4 5 6 7 8

STA IPM

STA IPM

PWRACC

CONSOLE

CONSOLE

USB

USB

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

STA IPM

STA IPM

PWRACC

PWRACC

MANAGEMENT

CONSOLE

CONSOLE

CONSOLE

USB

USB

USB

1 2 3 4 5 6 7 8

STA IPM

SYSTEM

CONSOLE

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

E2

ZRE

FLT

LED MODE

STA IPM

PWRACC

MANAGEMENT

E

E

T

T

H

H

O

O

SYSTEM

CONSOLE

R

R

S

S

2

2

3

3

2

2

Z

Z

R

R

E

E

0

0

Z

Z

R

R

E

E

1

1

Z

Z

R

R

E

E

2

2

E1

E2

E1

1514

1514

1312

1312

1110

1110

98

98

76

76

54

54

32

32

10

10

ZRE

OKCLK

OKCLK

INTEXT

INTEXT

FLT

FLT

FLT

HOT SWAP

HOT SWAP

RESET

RESET

LED MODE

STA IPM

PWRACC

PWRACC

CONSOLE

CONSOLE

USB

USB

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

STA IPM

STA IPM

PWRACC

PWRACC

CONSOLE

USB

1 2 3 4 5 6 7 8

CONSOLE

CONSOLE

USB

USB

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

STA IPM

STA IPM

PWRACC

STA IPM

5140

ESD socket

Slot

numbers

Crit.
Maj.
Min.

3
2
1

CONSOLE

Alarms

Rst

USB

1 2 3 4 5 6 7 8

Link
Act

100

ETH 0

Prim.
ShMC

Stat.

Link

Act

100

ETH 0

Sec.

ShMC

Stat.

FortiGate-5140

Shelf Manager

Front cable

3 hot-swappable
cooling fan trays

(numbered 0, 1, and

2 behind panel)

tray

FortiGate-5000 Series Quick Guide
01-00000-0294-20060315 7

FortiGate-5140 chassis

Figure 2 shows the back panel of the FortiGate-5140 chassis. The back panel

includes two hot-swappable redundant -48V/-60 VDC power entry modules
(PEMs) labelled PEM A and PEM B.

Figure 2: FortiGate-5140 chassis back panel

Back cable

tray

GND

Ground

connectors

(green)

GND

-48V

-48V

-48V/-60 VDC nom RTN

HS

HS

Alarm

operate

-48V/-60 VDC
nom (black)

BPEM PEM

RTN

RTN

RTN

(red)

12341234

12341234

HS

-48V/-60 VDC
nom (black)

RTN

-48V

-48V

RTN

-48V/-60 VDC nom RTN

HS

Alarm

operate

(red)

Power

Entry Module B

(protection

plate removed)

A

12341234

12341234

RTN

Power

Entry Module A

(protection

plate removed)

FortiGate-5000 Series Quick Guide

8 01-00000-0294-20060315

FortiGate-5140 chassis Connecting a FortiGate-5140 chassis to Data Center DC power and Data Center ground

Connecting a FortiGate-5140 chassis to Data Center DC power
and Data Center ground

Connect the FortiGate-5140 chassis to Data Center DC power (also called battery
power) using the redundant power entry modules (PEMs). Fortinet supplies and
recommends AWG-14 stranded wires for all power connections. Black for

-48VDC, red for RTN, and green for ground. If required, install terminal lugs on the
wires before connecting them to the PEM terminal strips. If you are connecting
both PEMs the -48VDC and RTN terminals on PEM A and PEM B must be wired
symmetrically.

Figure 3: Connecting a FortiGate-5140 PEM to Data Center DC power

Data Center

-48VDC

connector

Data Center

RTN connector

-48V/-60 VDC
black to Data

Center -48VDC

-48V

-48V

RTN (positive)

RTN

RTN

red to Data

Center RTN

-48V/-60 VDC nom RTN

HS

HS

Alarm

operate

-48V/-60 VDC nom
terminal strip

connectors

1, 2, 3, 4

12341234

12341234

RTN (positive)

terminal strip

connectors

1, 2, 3, 4

Figure 4: Connecting a FortiGate-5140 chassis to Data Center ground

FortiGate-5140

Ground

connectors

Data Center

ground

connectors

FortiGate-5000 Series Quick Guide
01-00000-0294-20060315 9

Connecting the FortiGate-5140 chassis to AC power using the FortiGate-5053 power converter tray FortiGate-5140 chassis

Connecting the FortiGate-5140 chassis to AC power using the
FortiGate-5053 power converter tray

If Data Center DC power is not available, you can use the FortiGate-5053 power
converter tray with FortiGate-5140 power supplies (shown in Figure 5) to convert
AC power to DC power. The FortiGate-5053 power converter tray and the power
supplies are not supplied with the FortiGate-5140 chassis and must be purchased
separately.

The front panel of the FortiGate-5053 power converter tray (shown in Figure 5)
provides access to the FortiGate-5140 power supplies.

Figure 5: Front panel of the FortiGate-5053 power converter tray with one power

supply removed

Slot 3

The back panel of the FortiGate-5053 (shown in Figure 6) includes one DC power
connector terminal consisting of a RTN connector and a -48VDC connector. The

-48VDC connector is labelled -V. The RTN connector is not labelled.

Figure 6: Back panel of the FortiGate-5053 power converter tray

Slot 2

Slot 1

24 VAC 1 2 3

V-

Positive

(RTN)

(red)

-48V/-58 VDC

V-

(black)

DC out

AC in

Selecting the power supplies and power convertor trays that you need for
your FortiGate-5140 configuration

The FortiGate-5053 power converter tray contains space for up to three
FortiGate-5140 power supplies. A FortiGate-5140 power supply converts AC
power to -48 VDC power. Each FortiGate-5140 power supply provides 1200W of
power.

The FortiGate-5053 power converter tray uses 2 + 1 power supply redundancy.
If three FortiGate-5140 power supplies are installed in a FortiGate-5053 power
converter tray, the first two power supplies provide a total of 2400W (2 x 1200W)
of power. The third power supply is the redundant backup.

FortiGate-5000 Series Quick Guide

10 01-00000-0294-20060315

FortiGate-5140 chassis Connecting the FortiGate-5140 chassis to AC power using the FortiGate-5053 power converter tray

Basic power requirements

To supply enough power for a FortiGate-5140 ch assis with a total of 14 FortiGa t e
and FortiSwitch modules you require one FortiGate-5053 power converter tray
and two FortiGate-5140 power supplies (see Figure 7). The FortiGate-5140 power
supplies are installed in FortiGate-5053 slots 1 and 2. This configuration supplies
2400W of power to the FortiGate-5140 chassis.

Figure 7: Non-redundant power for all FortiGate-5140 chassis slots

1 FortiGate-5053

Slot 1Slot 2Slot 3

power convertor tray

2 FortiGate-5140

power supplies

2 x 1200W = 2400W

1 FortiGate-5140

chassis

13 11 9 7 5 3 1 2 4 6 8 10 12 14

PWRACC

PWRACC

PWRACC

CONSOLE

CONSOLE

USB

USB

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

STAIPM

STAIPM

PWRACC

PWRACC

PWRACC

MANAGEMENT

CONSOLE

CONSOLE

CONSOLE

CONSOLE

USB

USB

USB

USB

SYSTEM
CONSOLE

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

E1

E2

1514
1312
1110
98
76
54
32
10

ZRE

OKCLK
INTEXT
FLT

FLT

HOT SWAP

RESET

STAIPM

LED MODE

STAIPM

STAIPM

STAIPM

PWRACC

PWRACC

PWRACC

MANAGEMENT

E

E

T

T

H

H

O

O

CONSOLE

USB

SYSTEM

CONSOLE

R

R

S

S

2

2

3

3

2

2

1 2 3 4 5 6 7 8

Z

Z

R

R

E

E

0

0

Z

Z

R

R

E

E

1

1

Z

Z

R

R

E

E

2

2

E2

E1

1514
1312
1110
98
76
54
32
10

ZRE

OKCLK
INTEXT
FLT

FLT

HOT SWAP

RESET

LED MODE

STAIPM

PWRACC

PWRACC

CONSOLE

CONSOLE

CONSOLE

CONSOLE

USB

USB

USB

USB

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

1 2 3 4 5 6 7 8

STAIPM

STAIPM

STAIPM

STAIPM

For information about additional power configurations, see the FortiGate-5000

Series Hardware Guide.

5140

Crit.
Maj.
Min.

PWRACC

3
2
1

CONSOLE

Alarms

Rst

USB

1 2 3 4 5 6 7 8

Link
Act
100

ETH 0

Prim.
ShMC

Stat.

Link
Act
100

ETH 0

STAIPM

Sec.
ShMC

Stat.

FortiGate-5000 Series Quick Guide
01-00000-0294-20060315 11

Connecting the FortiGate-5140 chassis to AC power using the FortiGate-5053 power converter tray FortiGate-5140 chassis

Connecting a FortiGate-5140 chassis to the FortiGate-5053 power converter
tray

To use a FortiGate-5053 power converter tray with the FortiGate-5140 chassis
you need to make DC power connections between the FortiGate-5140 chassis
and the FortiGate-5053 power converter tray. You also need to the connect the
FortiGate-5140 chassis to Data Center ground.

Figure 8: Connect a FortiGate-5140 PEM to a FortiGate-5053 power converter tray

24 VAC 1 2 3

V-

(RTN)

(Red)

V-

(Black)

-48V/-60 VDC Black to
FortiGate-5053

-48/-58 VDC

-48V

-48V/-60 VDC nom RTN

HS

HS

Alarm

operate

-48V/-60 VDC
terminal strip

connectors

1, 2, 3, 4

RTN Red to

FortiGate-5053

RTN

RTN

12341234

12341234

RTN (positive)

terminal strip

connectors

1, 2, 3, 4

AC in

FortiGate-5000 Series Quick Guide

12 01-00000-0294-20060315