Cisco SG300 and Fortigate 90D integration

Forum|Forum|8 years ago
April 23, 2018
1 reply
4097 views

I need help in setting up my network, currently I have the following setup.

All the computers can browse the internet but when I tried to create a two groups (a group that can access the internet and a group that can't access the internet) using Device MAC Access Control but to no avail still all the computers can access the internet. I follow the instructions in the Fortigate Cookbook (FORTI OS 5.4), Fortigate seems cannot recognize/identify MAC Addreses of the computers int the network.

NET.jpg

5.4

localhost

Visitor III

Since your switch is doing the routing, source mac address will always be your switch (192.168.1.2).

Some options you have:

- Move the routing to the fortigate. Keep the switch just as a layer 2 device. Then you can use MAC addresses in your policy.

- Assign static ip, or dhcp reservations and use IP addresses in your policy.

- Use FSSO

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded