Skip to main content
capricorn80
capricorn80
New Member
August 13, 2018
Question

Static route issue

  • August 13, 2018
  • 1 reply
  • 5571 views

Hi!

 

I have two SVI living in my core router. I am using transport link 10.254.1.1 and 10.254.1.2 from Core to Fortigate

 

Fortigate port1: 10.254.1.2

Fortigate Port2: 10.98.1.200 for management like ssh

SVI on Core 10.254.1.1

 

SVI 100= 10.100.1.1

SVI 200= 10.98.1.1

 

If I set the static route like 10.0.0.0/255.0.0.0 next hop via 10.254.1.1 then I can access internet from both SVI's but if I set static route as 10.100.1.0/255.255.255.0 next hop via 10.254.1.1 and 10.98.1.0/255.255.255.0 via 10.254.1.1

then I cannot access the internet from 10.98.1.0 network.

 

Also from 10.100.1.0 network I cannot reach 10.98.1.200.

 

If I can set diagnose I can see that syn is arrving on port 22 and same with icmp echo request.

 

Any tip for it solution?

 

Thanks

    1 reply

    capricorn80
    capricorn80Author
    New Member
    August 14, 2018

    i can see that 10.98.1.0 is showing the directly connected route so I dont need to have any route for it as its directly connected but strangly If I set the route to just 10.100.1.0/255.255.255.0 next hop via 10.254.1.1 then I cannot reach the FW management or internet from 10.98.1.0 network. The access rule is in place.

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    August 14, 2018

    Just in case you declared the port as "dedicated to management": mgmt ports don't route. They are for OOB management within the same LAN.

    capricorn80
    capricorn80Author
    New Member
    August 15, 2018

    I have now moved the Management to OOB from port 2 and my management network is showing in the connected route on the Firewall. What If I want to reach to internet from OOB?

    Terms & ConditionsAccessibility statement