Hello,
We've got a problem in our network. When devices are connected to two different access points (Local-WiFi-radio and FortiAP-221E), they can't seem to find each other even though they're on the same SSID. But, if they're connected to the same access point, everything works fine. Devices operate in Tunnel mode.
We made sure that the setting which stops devices from talking to each other (client isolation) is turned off on both the access points. Also, we checked that both are set up to work in the same subnet. Still, we're stuck with this issue.
We're using a FortiWiFi 40F and a FortiAP 221-E.
Problem:
ClientA -> FortiAP1 -> FortiGate (FortiWiFI)-> FortiAP2(FortiWiFi) -> ClientB - Ping Fail
ClientA -> FortiAP1 -> FortiGate (FortiWiFI)-> FortiAP1 -> ClientB - Ping Success
ClientA -> FortiAP2(FortiWiFi) -> FortiGate (FortiWiFI) -> FortiAP2(FortiWiFi) -> ClientB - Ping Success
Hello! Thank you and sorry for waiting.
I know the interface of my external FortiAP and I have policies
FortiAP1->WiFi-SSID ALLOW
WiFi-SSID->FortiAP1 ALLOW
But I don't know how to configure a firewall rule for FortiAP2 (FortiWiFi). I see that FortiAP2(FortiWiFi) has an address of 127.0.0.1 (see screenshot)
Problem is actual :(
Created on 09-10-2024 01:10 AM Edited on 10-30-2024 03:38 AM
deleted
I had exact this same issue. For me the solution was the dissable the Block intra-VLAN traffic in the VLAN configuration.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.