Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
a_acampa
New Contributor

Created on ‎07-11-2017 12:30 AM

Device identification not works properly

Hi all, I have a cluster of Fortigate 500, we have enabled device identification feature on LAN Interface. But we see some incorrect correlations, for example one device with 3 or 4 ip, or 1 user related to 3 devices.

exist some best practice to be sure that correlation are correct or better?

 

thanks

in advance

Andrea

6546
0 Kudos
4 REPLIES 4
EMES
Contributor

Created on ‎07-11-2017 05:31 AM

Are there any layer3 devices connected to the lab interface? The device identification works best when connected to a layer2 device.
1495
0 Kudos
MikePruett
Valued Contributor
In response to EMES

Created on ‎07-11-2017 06:59 AM

Yeah, you definitely want your FortiGate to share the same layer 2 connectivity as the devices. (terminate the SVI/VLANs on your Gate itself instead of the layer 3 core etc.)

Mike Pruett

Fortinet GURU | Fortinet Training Videos

1495
0 Kudos
emnoc
Esteemed Contributor III
In response to MikePruett

Created on ‎07-11-2017 07:49 AM

Agreed, also any thing  downstream that SNAT will give "erroneous" information.

 

 

PCNSE 

NSE 

StrongSwan  

1495
0 Kudos
sanderl
New Contributor III

Created on ‎07-11-2017 12:14 PM

You're not alone, and for a long while not... For me it is also not working (anymore):

https://forum.fortinet.com/tm.aspx?m=138731

 

1495
0 Kudos
Labels
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.