We have FGT in HA which is connected to two core(1024E) switches using fortilink with 04 access switches hanging out of the core switches.
We have LAN and WIFI VLANs configured on the fabric which work through FW. We have configured the policy for intervlan also. In Access Switches in native vlan we have configured the respected vlans and in allowed vlan we have putted all.
While sniff the traffic getting below output,
Any extra configuration needs to be done for intervlan?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Sniffer outout
interfaces=[any]
filters=[host 10.1.67.150 and host 10.1.66.245]
2024-10-21 06:57:59.856323 WIFI in 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:57:59.856387 LAN out 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:57:59.856390 fortilink out 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:57:59.856394 port10 out 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:58:00.144113 LAN in arp who-has 10.1.67.150 tell 10.1.66.245
2024-10-21 06:58:04.498610 WIFI in 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:58:04.498638 LAN out 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:58:04.498641 fortilink out 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:58:04.498645 port10 out 10.1.67.150 -> 10.1.66.245: icmp: echo request
2024-10-21 06:58:04.498983 LAN in arp who-has 10.1.67.150 tell 10.1.66.245
2024-10-21 06:58:05.146777 LAN in arp who-has 10.1.67.150 tell 10.1.66.245
2024-10-21 06:58:06.148097 LAN in arp who-has 10.1.67.150 tell 10.1.66.245
It seems like part of the content is missing in the post, try to edit it and add them again.
VLAN will appear as interfaces and will need Firewall Policies to allow communication between them.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.