Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
a_acampa
New Contributor

Device identification not works properly

Hi all, I have a cluster of Fortigate 500, we have enabled device identification feature on LAN Interface. But we see some incorrect correlations, for example one device with 3 or 4 ip, or 1 user related to 3 devices.

exist some best practice to be sure that correlation are correct or better?

 

thanks

in advance

Andrea

4 REPLIES 4
EMES
Contributor

Are there any layer3 devices connected to the lab interface? The device identification works best when connected to a layer2 device.
MikePruett
Valued Contributor

Yeah, you definitely want your FortiGate to share the same layer 2 connectivity as the devices. (terminate the SVI/VLANs on your Gate itself instead of the layer 3 core etc.)

Mike Pruett Fortinet GURU | Fortinet Training Videos
emnoc
Esteemed Contributor III

Agreed, also any thing  downstream that SNAT will give "erroneous" information.

 

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
sanderl
New Contributor III

You're not alone, and for a long while not... For me it is also not working (anymore):

https://forum.fortinet.com/tm.aspx?m=138731

 

Labels
Top Kudoed Authors