Chapter 7 Firewall for FortiOS 5.0 : Firewall objects : Example Scenario: Using FortiGate services to support Audio/Visual Conferencing : Policies : Outgoing Policy
  
Outgoing Policy
A policy has to be made to allow the traffic to leave from the subnet in the conference room to the Internet, not only for the traffic for the Tele-conferencing equipment but for normal traffic of users on the Internet such as web research and email. The traffic is outgoing so there is less of a need for an Intrusion Protection System filter, but check with the network architect in case there is a need for using one of the other security profiles.
Go to Policy -> Policy -> Policy.
Create New
Fill out the fields with the following information:
Policy Type
Firewall
Policy Subtype
Address
Incoming Interface
port7
Source Address
Port7_subnet
Outgoing Interface
wan1
Destination Address
all
Schedule
always
Service
any
Action
ACCEPT
Enable NAT
enabled
Use Destination Interface Address
Logging Options
Logging is a good idea but how much will depend on storage capabilities.
Security Profiles
<see above>
Traffic Shaping,
Web cache,
WAN Optimization, Disclaimer:
The use of these features will depend on your network environment and should be decided by the network architect, as the decision will largely be based on network bandwidth, usage and importance of Video conferencing compared to other traffic.
Select OK.
The policy will then need to be put in the correct position in the sequence of the policies.