Step 1: Folder Structure
Step 2: Firewall Configuration
Step 3: Logging & Monitoring
Step 4: Admin Access Controls
Step 5: Firmware & Updates
Step 6: Screenshots
Step 7: Evidence Statements
Step 8: Build Log
Step 1 – Evidence Folder Structure
Purpose: Organise Fortinet firewall evidence for audit review.
CyberEssentials-Fortinet/ ├── Configs/ ├── Logs/ ├── Screenshots/ ├── Statements/ ├── Firmware/ └── Build-CE-EvidencePack.log
Step 2 – Firewall Configuration Evidence
Cyber Essentials Control: Network Security
# Export full firewall configuration execute backup config ftp FortiGate.conf 10.10.10.10 username password # Review firewall policies show firewall policy # Verify default deny config firewall policy show | grep action end
Step 3 – Logging & Monitoring
Cyber Essentials Control: Security Monitoring
# Enable traffic logging config log setting set status enable set fwpolicy-implicit-log enable end # View admin login events execute log filter category event execute log display
Step 4 – Administrative Access Control
Cyber Essentials Control: Secure Configuration
# Show admin accounts
show system admin
# Enforce trusted hosts
config system admin
edit admin
set trusthost1 192.168.1.0 255.255.255.0
next
end
Step 5 – Firmware & Patch Management
Cyber Essentials Control: Security Update Management
# Check FortiOS version get system status # Firmware upgrade history diagnose sys flash list
Step 6 – Screenshots
- Firewall Policies
- Traffic Logs
- Admin Accounts
- Firmware Version
- Logging Configuration
- Outcome : This pack provides full traceability and satisfies CE+ technical verification
Step 7 – Evidence Statements
- Firewall Configuration Statement – Confirms default deny & least privilege
- Logging & Monitoring Statement – Traffic, admin & security events logged
- Patch Management Statement – FortiOS firmware maintained
Step 8 – Build Log
2026-02-01 – Firewall config exported 2026-02-01 – Logs verified 2026-02-01 – Screenshots captured 2026-02-01 – Evidence packaged