Skip to main content
social
social
New Member
February 25, 2025
Question

lan vip

  • February 25, 2025
  • 1 reply
  • 2171 views

hi, I have a problem with Fortigate 80f. I made interface number 2 as WAN and did port forwarding with VIP but I can't make it work. It gets an IP address as WAN and I can connect from outside, but the VIP rule doesn't work. The VIP rules on the WAN and LAN sides work, I write the rule and do the VIP process correctly.

1 reply

funkylicious
SuperUser
funkylicious
SuperUser
February 25, 2025

hi,

so basically now you have 2 wan ports, wan1 and wan2 ? or, please share more info about your setup.

try enabling NAT for traffic , wan2 > lan ( vip ) and see if it works.

"jack of all trades, master of none"
    social
    socialAuthor
    New Member
    February 25, 2025

    i have 2 wan ports, wan1 and lan2.

     

    wan1 vip works without any problems, there are 5 rules. Exchange and rdp etc.

     

    VIP on LAN 2 does not work, I can connect to the external IP address I assigned to LAN2, but the VIP operation does not work.

     

    I enabled nat but it didn't help.

     

    funkylicious
    SuperUser
    funkylicious
    SuperUser
    February 25, 2025

    can you confirm that traffic is entering lan2 ( wan2 ) interface ?

    do a , diag sniffer packet lan2 'host SRC' 4 0 l , to confirm.

    can you also please share the config of the rules and vip ? show firewall policy <> and show firewall vip <> for this new one?


    L.E. also the routing table would be quite important, get router info routing-table static ( assuming that there are static routes for wan connection, otherwise please use all instead of static )

    "jack of all trades, master of none"
      Terms & ConditionsAccessibility statement