Fortigate Mac Adress Problem

Hi @rcpdkc ,

Some questions:

1) What are the firmware versions on two FGT devices?

2) "Lan firewall has DHCP"

Do you mean that internal LAN users get IPs via DHCP server on the LAN FGT?

3) "The users on the LAN go to the internet through the wan firewall."

I believe that the traffic flow is going through the LAN FGT first, then  through the WAN FGT, right?

4) "The logs from the lan firewall to the wan firewall show the user's mac address."

4.1) What are the logs? The Traffic logs or something else? 

4.2) Where are the logs? On the LAN FGT or the WAN FGT or both?

4.3) Can you attach the screenshot of the log and/or the RAW log?

Hi rcpdkc,

This is normal, mac address are local to broadcast-domains, they do not cross networks. Once a Firewall is a L3-L7 device the mac address between subnets are 'replaced' by the mac address of the interfaces on each subnet.

Do some search on 'how broadcast domain works'. Fortinet documentation do not explain that but if you search for CCNA material from Cisco you will found very good references.