New Member

Solved

Sonos/ Fortigate 60e / 7.2.1 / AP

Forum|Forum|3 years ago
September 18, 2022
6 replies
17591 views

I have an Fortigate 60E with on port 7 with a Fortigate 48 ports switch connected trough Fortlink with IP adres 192.168.5.1 - 192.168.5.254.

On my FortiSwitch a have a VLAN ID 60 for Wifi with adres 192.168.2.1/255.255.255.0.

On port 40 of my switch i have an Fortigate AP (FC24JE). with adres 192.168.2.25

I have an WiFi SSID Sonos with adres 192.168.6.1/255.255.255.0.

I can registrate my Iphone on it an get an ip adres 192.168.6.25.

But i cannot install my Sonos with the Sonos ap. De app will not find my Sonos system.

How can i fix this.

With regards

Dennis

FortiAP

Best answer by gfleming

It should work by default. You can try enabling igmp snooping on the VAP. Also check the status of these commands?

config system settings
set multicast-forward enable
set multicast-ttl-notchange enable
end

# config router multicast
set multicast-routing disable
end

jhussain_FTNT

Staff

Hi Dennis,

Are you able to browse any website when you connect to the Sonos SSID with the client device.

Secondly did you have configured any UTM on the Sonos SSID to wan Interface firewall policy, if so kindly test with disabling the UTM and let us known if you were able to download the Sonos application.

Regards

Jamal

DennisvanDrielAuthor

New Member

I have make an Firewall policy Rule from the WAN to the SSID Sonos and from SSID Sonos to WAN.

I have internet on my iphone on the SSID Sonos. Everything is working well.

I can download the Sonos app form the app store, but i cannot install my Sonos system because the app cannot find the system.

I also set the Mulitcast policy from WAN to SSID Sonos and back.

Every UTM are disabled.

With regards,

Dennis

gfleming

Staff

Is your phone on the same Sonos wi-fi network when you are trying to find the Sonos system?

DennisvanDrielAuthor

New Member

Yes it is

gfleming

Staff

can you post output of:

show full wireless-controller vap <YOUR_SSID_NAME> | grep igmp

show full wireless-controller vap <YOUR_SSID_NAME> | grep multicast

DennisvanDrielAuthor

New Member

set igmp-snooping disable

set multicast-rate 0

set multicast-enhance disable

DennisvanDrielAuthor

New Member

I removed the Sonos App and installed it again.

I can see now my Sonos 1. So that is great.

But i get now an Error code 1001.

gfleming

Staff

Sounds like a Sonos issue then. Good luck!

DennisvanDrielAuthor

New Member

I need to open the following ports for the Sonos network.

All the ip adresses in 192.168.6.1/255.255.255.0

How can i do this?

gfleming

Staff

You don't need to open ports for intra-VLAN traffic. Unless you have specifically blocked intra-VLAN traffic on the FortiGate interface... but I don't think you have because you said your phone can see the system now.

DennisvanDrielAuthor

New Member

I set the above settings. Still it was not working.

Then i rebooted my fortigate 60e then the switch and at last the AP.

Then it was working.

With regards,

Dennis

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded