Hi there,
What we want: to broadcast 2 different SSIDs each on another vdom (VDOM1 ssid for VDOM1-Bridge to LAN 192.168.1.0/24) and (VDOM2 ssid for VDOM2-Bridge to LAN 192.168.2.0/24)
Is it possible to achive this ?
What we’ve got: 1 FortGate 201F with multi-vdom (VDOM1, VDOM2…) and 1 FortiAP U231F with two rj45 Lan ports
Managed AP within VDOM1
VDOM1 – LAN 192.168.1.0/24 , SSID VDOM1 with WPA2-Enterprise Local Auth with Remote Active Directory Group
VDOM2 – LAN 192.168.2.0/24, SSID VDOM2 with WPA2-Personal PreSharedKey Auth
When we activate AP Profile with both SSIDs (VDOM1 and VDOM2) , clients are connecting but they get the Dhcp IP from the VDOM1 even if they connect to SSID vdom2.
Worst, even if the cables are connected correctly each LAN port to VDOM1 and VDOM2, the FortiAp acts as a L2 Swich merging the networks.
Many thanks,
Emil
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
5.6 added tunnel mode VAPs/SSIDs to be at different vdoms from root as in comments in an old thread.
https://forum.fortinet.com/tm.aspx?m=179438
But I don't know if it has been expanded to bridge mode SSIDs by now. My guess is not, but some others might know the answer.
Toshi
Hi Toshi and thank's for the reply,
Yes indeed, the CLI command makes SSID "VDOM2" visible to Managed AP profile within VDOM1 ,
BUT it throughs DHCP IP from VDOM1 instead VDOM2 although when I edit the VDOM2 SSID interface it point to VDOM2.
"config wireless-controller global set wtp-share enable end"
I even tried to configure AP interfaces in "WAN-LAN" mode - by default they are in "WAN-only"
[ul]Enabling WAN-LAN mode on FortiAP-U models:
cfg -a FAP_ETHER_TRUNK=3cfg -cNote: By default, FAP_ETHER_TRUNK is set to 0.
[/ul]The problem seems to be at assigning VDOMs SSID interface.... it says that is within VDOM2 but it actually behaves like a L2 Switch....seams to me...
Anybody with a suggestion even if is not an expert one ?
Or should we close this topic and move to something simple?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1717 | |
1093 | |
752 | |
447 | |
234 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.