DMZ dont get internet

Forum|Forum|6 years ago
April 17, 2020
1 reply
7923 views

Hi Guys,

I configured my foritgate 30e to also have a DMZ network on port 4 i used all information i can get on the internet.

From the normal lan network i can ping the dmz 10.10.10.1 or the webserver 10.10.10.2 .

From the webserver itself i cannot ping the inside network 192.168.1.110 (other server ) or the foritgate 192.168.1.99 so thats how it supposed to be.

I use the following network settings see attachment

Hope someone can help me or let me see the fault

Sincerly Marvin

fortinetdmzP.png

marvineAuthor

New Member

Anyone ideas where it goes wrong i cant build the network now?

Fullmoon

New Member

see to it that you have correct firewall policy in placed.

From Port 4 to LAN and v.v. NAT should be disabled in the policy. Please put in mind each machines on different segment must have correct default gateway.

To allow internet traffic from port 4 you should create a policy from Port 4 to WAN with NAT Enabled.

marvineAuthor

New Member

"Please put in mind each machines on different segment must have correct default gateway."

I now use for the webserver gateway 10.10.10.1 should i be using a other gateway ?

And for more information port 4 is physical connected to port 4 on the esxi host.

See attachments for IPV4 policy config

Thanks for your input !

fortiipv4.png

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded