I unboxed a new Fortigate 200F. I uplifted the firmware from 6.x to 7.2 b1157
I configured a WAN-interface as a VLAN-switch, and made setup: route, rule+nat, DNS and IPs.
Internet-access is fine.
I have allowed admin-access via icmp and https (custom port), I have defined trusted hosts.
I can access the admin-center from the trusted host ok, from an untrusted host its blocked.
So far everything looks as usual.
In doing some tests I realised that I can't ping the WAN-interface from the outside.
Its not working neither from trusted nor untrusted hosts.
To my mind it should be pingable for both hostgroups if its enabled on the interface-definition.
I checked on a fortigate 100F, same firmware and pretty same config, there the WAN-interface is pingable.
Just wondering: is there an obscure option I'm not aware of? The forti was preregistered by the vendor, maybe he introduced an oddity....
Any recommendation how to debug this?