Skip to content

Create Schedules

A schedule is a named time window used in firewall policies. The most common use: time-based access (e.g. "guest Wi-Fi only between 8 AM and 6 PM"). The built-in always schedule means "24/7."

Schedule Types

  • Recurring — repeating weekly schedule (e.g. business hours).
  • One-time — fires once between specific dates/times (e.g. holiday closure).
  • Schedule Group — combine multiple schedules.

Steps

Recurring schedule

  1. Policy & Objects → Schedules → + Create New → Recurring Schedule.
  2. Fill in:
    • Name — e.g. Business-Hours.
    • Color — optional.
    • Days — check the days it applies (e.g. Mon–Fri).
    • Start Time — e.g. 08:00.
    • Stop Time — e.g. 17:00. Use 00:00 to mean "midnight at end of stop day."
  3. OK.

One-time schedule

  1. Policy & Objects → Schedules → + Create New → One-Time Schedule.
  2. Fill in:
    • Name — e.g. Maintenance-Window-May-15.
    • Start Date / Time — when it begins.
    • End Date / Time — when it ends.
    • Pre-Expiration Event Log — minutes before expiry to log a warning.
  3. OK.

Use in a policy

In any firewall policy, set Schedule to your new schedule. The policy only matches during that window.

CLI Equivalent

config firewall schedule recurring
edit "Business-Hours"
    set day monday tuesday wednesday thursday friday
    set start 08:00
    set end 17:00
next
end

config firewall schedule onetime
edit "Maintenance-Window-May-15"
    set start 00:00 2026/05/15
    set end 04:00 2026/05/15
next
end

Use Cases

  • Guest Wi-Fi business hours only: schedule Business-Hours on the guest-LAN-to-WAN policy.
  • Block social media during work hours: Schedule Business-Hours on a Deny policy for social-media app group.
  • Allow vendor remote access during a specific window: One-time schedule + restrict source to vendor IP.

Common Issues

  • Schedule applied but rule still active outside window. Existing sessions don't expire when the schedule does — only NEW sessions get the new policy decision. To force: clear sessions.
  • Time zone confusion. Schedule uses the FortiGate's system time. Verify timezone: System → Settings → Time Zone.
  • Stop time at midnight. Use 00:00 of the NEXT day, not 24:00 (which doesn't exist).