Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Musab
New Contributor

Created on ‎09-21-2018 12:47 AM

Connection Test

Hello everyone,

 

I am wondering if FortiGate can have a point-to-point connection with a Cisco router using /31 subnet. And if it does, what is the protocol to enable it? Or is it the usual configuration(default gateway, etc.).

 

Thank you.

3856
0 Kudos
2 REPLIES 2
ede_pfau
SuperUser
SuperUser

Created on ‎09-21-2018 03:08 AM

In general yes, but IMHO you need a /30 mask. Connection will be plain routed, VLAN, IPsec VPN,...whatever you need.

As the FGT drops traffic from unknown sources you may have to make external networks "known" by installing static routes.

Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
2430
0 Kudos
Toshi_Esumi
SuperUser
SuperUser
In response to ede_pfau

Created on ‎09-21-2018 08:52 AM

We use /31 on FGTs at many places like internal interconnections per customer to save IPv4 public IPs. There were some minor bugs related to /31 subnets in the past but those were with 5.2.x. They fixed them. We migrated most of our FGTs to 5.4 by now and planning to go up to 5.6.6 soon. So far I'm not aware of any issues.

2430
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.