Skip to main content
kzuk
kzuk
New Member
August 28, 2019
Question

Fortigate VDOMs instead two CISCO routers

  • August 28, 2019
  • 2 replies
  • 18418 views

Hi,

 

I have used two CISCO routers so far.

The first router provided access to the internet and for the first segment of the network. Behind this router was a second one (behind NAT), which was a network separator. I would like to implement this configuration on one Fortigate 100E. I have already created two VDOMs but I am not sure if I should use VDOM Links or something else.

 

    2 replies

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    August 28, 2019

    If you want to go that way VDOM links would be natural to use. The only other setup would be to assign some physical ports to each VDOM and connect them via external cable. Which, in comparison, is not only less elegant but VDOM links might offer more bandwidth on top.

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    August 28, 2019

    FYI: you can find the configuration in online help.

    https://help.fortinet.com...t=inter-vdom%20routing

    oliviahuffman
    oliviahuffman
    New Member
    August 28, 2019

    nice thank you for sharing!!

    kzuk
    kzukAuthor
    New Member
    August 29, 2019

    Ok, i have problem. I have configured FortiSwitch with FortiGate. VDOMs configured with VLAN interfaces (FortiSwitch).

     

    I set static routes on both VDOMs and can't send any packets between VDOMs.

     

    Policies configured on both VDOMs and while i try to ping other side i see activity but only on current VDOM.

     

    Communication within VDOM is OK. I have problem with route between VDOMs.

    smari
    smari
    New Member
    August 29, 2019

    what does your debug flow say ?

    Terms & ConditionsAccessibility statement