Forti600E internet line configuration issue

Forum|Forum|5 years ago
October 6, 2020
1 reply
3188 views

Hi, experts,

I found internet access issue from the Fortigate, as the attached Dashboard (WAN IP can not be detected, and ... ),

Due to the internet line is configured as below(the primary IP is private):

the primary IP is : 10.10.10.2/30 (peered to the upper Layer3 device )

the secondary IP is : 100.100.100.100 ( for internet access ).

any advice in order for the Fortigate being able to access the internet, thx a lot ?

Forti600E Dashboard.png

Best answer by sw2090

do you have a default route on your FGT? To be able to contact anything in the internet you need to have a default route. Even if you use sd-wan. This is not set up automatically on the FGT.

So create a static route to 0.0.0.0/0.0.0.0 with destination interface your wan and maybe a gateway ip if needed.

It reports wan ip unknown because you have static ip setup with a lan ip so there is no wan ip on the FGT. Only the router or modem behind the wan knows the wan ip. This should be ok so far.

sw2090Answer

SuperUser

do you have a default route on your FGT? To be able to contact anything in the internet you need to have a default route. Even if you use sd-wan. This is not set up automatically on the FGT.

So create a static route to 0.0.0.0/0.0.0.0 with destination interface your wan and maybe a gateway ip if needed.

It reports wan ip unknown because you have static ip setup with a lan ip so there is no wan ip on the FGT. Only the router or modem behind the wan knows the wan ip. This should be ok so far.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded