Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

Ashu27
New Contributor

Reg Gui Access

Hi,

I have create three vlan in firewall on port 5.
and i am using Cisco Access point Mobilty express. and i create three SSID and attach it with 3 different Vlan.
Now my problem is when i connect to this Access Point to firewall than i am unable to take GUI of Access Point,
And when i connect to ethernet cable direct to my laptop then i got GUI of this.
Anybody tell me what part is missing in firewall.

Thanks & Regards

Ashwani Kumar

Network Engineer

9971-118-601

Thanks & Regards Ashwani Kumar Network Engineer 9971-118-601
6 REPLIES 6
DeepKuma2
Contributor

Hi, 
Let's start from WIFI tshoot:
Connect laptop wifi and login in Mobility controller:

1. Are you able to ping Firewall IP?
2. Is there any Access List configured on the Mobility controller?

Check a few points on the firewall:
A: Did you assigned any another Role to the VLAN ID?
B. Any Management ACL configuration?
c. If there is any Zone then did you assigned GUI, Telnet access?



------------------------------
Deepak Kumar
First Option General Trading LLC
Dubai
------------------------------
Deepak Kumar First Option General Trading LLC Dubai
Deepak Kumar First Option General Trading LLC Dubai
Ashu27

Yes i am ableto ping Gateway of that vlan
and i did not create any ACL rule on AP.

Thanks & Regards

Ashwani Kumar

Network Engineer

9971-118-601

Thanks & Regards Ashwani Kumar Network Engineer 9971-118-601
DeepKuma2
Contributor

Hi,
Can you check the "Access" TAB on the "Interface" menu under the "Network" menu, Do you have HTTPS, HTTP access rights?

------------------------------
Deepak Kumar
First Option General Trading LLC
Dubai
------------------------------
Deepak Kumar First Option General Trading LLC Dubai
Deepak Kumar First Option General Trading LLC Dubai
Ashu27

ya already enable it.
one more thing i am also unable to ping the management IP of AP, when connect to SSID of that Particular VLAN.
when connect to the firewall.

Thanks & Regards

Ashwani Kumar

Network Engineer

9971-118-601

Thanks & Regards Ashwani Kumar Network Engineer 9971-118-601
DeepKuma2

Hi,
I got your point. Configure LAN to LAN Firewall rule. It will resolve the issue.

------------------------------
Deepak Kumar
First Option General Trading LLC
Dubai
------------------------------
Deepak Kumar First Option General Trading LLC Dubai
Deepak Kumar First Option General Trading LLC Dubai
AnonMemb
New Contributor II

This post was removed