Skip to main content
Roman_Gelfand
Roman_Gelfand
New Member
May 5, 2010
Question

Problem with side by side NAT and Transparent VDOMs

  • May 5, 2010
  • 5 replies
  • 3746 views
Please, refer to the attached picture. Based on this picture, I am not able to get out to the internet. However, if I just take out VLAN 730 ethernet cable out of, just, fortigate' s internal interface port, I am able to get out to internet. Can somebody tell me where I went wrong? Thanks in advance

    5 replies

    rwpatterson
    rwpatterson
    New Member
    May 5, 2010
    What do your routing entries look like: 1) With VLAN 730 connected and 2) Without VLAN 730 connected
    Roman_Gelfand
    Roman_GelfandAuthor
    New Member
    May 5, 2010
    For NAT VDOM ----------------------- Static Route Destination IP/Mask - 0.0.0.0/0.0.0.0 Device - wan2 Gateway - xx.xxx.xx.254 Distance (1-255) - 10 Priority (0-4294967295) - 0 For Transparent vdom there is nothing. Should I have specified the default gateway for transparent vdom? If yes, why does it work when there is only one vdom (transparent)?
    rwpatterson
    rwpatterson
    New Member
    May 5, 2010
    From the CLI
    # diag ip route list
    Or from the GUI ' Router > Monitor" . Look for any differences with that lead installed and removed...
    Roman_Gelfand
    Roman_GelfandAuthor
    New Member
    May 5, 2010
    This is what I get when vlan 730 is pulled out of fg50b. I am able to get out to wan. tab=254 vf=0 scope=253 type=1 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.248/29 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=254 vf=0 scope=253 type=1 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.0/24 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.255.255.255/32 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.254/32 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.255/32 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.255/32 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.15/32 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.248/32 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.0/32 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.0.0.0/32 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.0.0.1/32 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.0.0.0/8 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root)
    rwpatterson
    rwpatterson
    New Member
    May 5, 2010
    OK. What do you show when you plug back in?
    Roman_Gelfand
    Roman_GelfandAuthor
    New Member
    May 5, 2010
    tab=254 vf=0 scope=253 type=1 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.248/29 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=254 vf=0 scope=253 type=1 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.0/24 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.255.255.255/32 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.254/32 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.255/32 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.255/32 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.15/32 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->xx.xxx.xx.248/32 pref=xx.xxx.xx.254 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->192.168.8.0/32 pref=192.168.8.15 gwy=0.0.0.0 dev=13(root.b) tab=255 vf=0 scope=253 type=3 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.0.0.0/32 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.0.0.1/32 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root) tab=255 vf=0 scope=254 type=2 proto=2 prio=0 0.0.0.0/0.0.0.0/0->127.0.0.0/8 pref=127.0.0.1 gwy=0.0.0.0 dev=7(root)
    rwpatterson
    rwpatterson
    New Member
    May 6, 2010
    Well, they appear to be identical... I don' t see any default gateway. (0.0.0.0/0)
    Roman_Gelfand
    Roman_GelfandAuthor
    New Member
    May 6, 2010
    Why is the gateway 0.0.0.0/0? How do I specify default gateway for root vdom (transparent)? I tried to add it to routing table, but that didn' t help.
    Terms & ConditionsAccessibility statement