Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Dhanz
New Contributor

I Can Ping Other Device in different IP Network, But I can't Access using Device-name

i just a newbie in fortigate,

 

We have two interface in my FortiGate 60D

LAN 172.19.200.2/24
Wifi 10.0.0.1/24

 

we Can Akses the device only with the ip address., example LAN to Wifi, Wifi to LAN using ping the ip address..

but when Wifi akses to LAN using Device Name (computer name, printer name) coming the error, the network Access is not accessible. and file sharing can not access too.
can anybody help me to solved it? Thanks,

 

11 REPLIES 11
Debbie_FTNT
Staff
Staff

Hey Dhanz,

that sounds as if the devices can't resolve the hostnames in question.

If you do 'ping <device name>', is the ping successful?

-> that should trigger a DNS lookup for the device name

-> if this fails, then you're dealing with a DNS issue of some sort and need to check what DNS server your devices use, and why that DNS server can't resolve your workstation names.

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
Dhanz
New Contributor

Ping <Device Name> not Success.. 
Ping coludn't find host <Device name>   for LAN -> WIFI

LAN -> LAN Oke..

 

We Use DNS  Fortiguard Servers

seshuganesh
Staff
Staff

Hi Team,

 

If DNS Look up is failing you cannot ping devices using hostname.

Please check if your internal DNS server is able to do DNS lookup for those hostname, if it is able to do dns look up for the hostnames. Under network >> DNS in fortigate mention primary DNS server as "internal DNS server IP address" and secondary DNS server as "some public DNS "

 

If your internal DNS server is not able to resolve IP address for those hostnames, we cannot make it work. There should be DNS server which will resolve hostname to IP address
Please check and keep us posted

Dhanz

Hi Sir,

 

I had change the Network - DNS..

primary DNS 27.123.220.220 (ISP DNS)

Secondary DNS 8.8.8.8

 

the problem still exist., I can not ping by Device name for Different Network (ex: 172.19.200.12 to 10.0.0.24), just can ping by ip address..

 

This problem confuses me., User (wifi) Must use LAN converter to Print..

 

 

seshuganesh
Staff
Staff

Hi Team,

 

 

Will this DNS:27.123.220.220 can resolve internal hostnames?

Please check. If its able to resolve then firewall will be able to ping the machines

Dhanz
New Contributor

i can make DNS Server database work..
even i create the internal DNS Server, when i ping never connect. why?
I try my best to follow the instruction from https://docs.fortinet.com/ and from the YT video.. 
what the mistake??

Debbie_FTNT

Hey Dhanz,

did you create a DNS database on FortiGate to allow resolution of the hostname?

If yes, can you share that config with us?

Once you have that set up, you would have to ensure that your clients are actually using that FortiGate DNS database, and not google or ISP or any other public DNS.
Those public DNS likely will not be able to resolve your internal workstations.

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
Dhanz
New Contributor

Morning,

there is a Capture what we Configured to our Fortinet

 

Dhanz_0-1651021437539.pngDhanz_1-1651021469328.png

 

Dhanz_2-1651021501849.png

 

Debbie_FTNT

Hey Dhanz,

that looks ok to me.

Devices connected to the Wi-Fi interface (as long as they are using FortiGate interface IP as DNS) should be able to resolve the hostname 'jago'.

Are devices connected on the Wi-Fi interface using FortiGate interface IP as DNS?
On Windows, you can check this with "ipconfig /all" in CMD.

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++