Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Ouams_90
New Contributor

Created on ‎09-20-2023 05:03 AM Edited on ‎09-20-2023 05:15 AM

Fortigate WAN

Hello everyone; I really need help. I have a FortiGate200F firewall, I have just connected the fiber optic via a Huawei equipment (A810A). my multiservice network: RMS 192.168.141.98/30 my WAN network: 41.111......./30. My ADSL lines work as normally as possible via an SD-WAN and WAN alone. Thank you
Labels:
2121
0 Kudos
17 REPLIES 17
Ouams_90
New Contributor
In response to hbac

Created on ‎09-21-2023 11:05 AM

@hbac 

hi
yes I can ping default gateway of the fiber optic
I was able to access the internet by deactivating all the other pppoe ports and the sd-wan static route 0.0.0.0/0.0.0.0 - 0.0.0.0/0.0.0.0
the problem now is that the connection to the internet only lasts a few minutes and it shuts down internally, but I can ping my wan from the outside, every time I have to disable secondary ip 192.168.141.98/30 in Port 1.
for it to work.

the new static route is: 0.0.0.0/0.0.0.0- 192.168.141.97 for port 1

do you have any idea what the problem is?

Sincerely

868
0 Kudos
hbac
Staff
Staff
In response to Ouams_90

Created on ‎09-21-2023 11:10 AM

@Ouams_90,

 

I would suggest opening a ticket with Fortinet TAC to troubleshoot this issue. 

 

Regards, 

863
0 Kudos
Ouams_90
New Contributor
In response to hbac

Created on ‎09-23-2023 04:00 AM

hi @hbac 

I can ping my public address from the outside
but locally I don't have internet .

do you have any idea of the problem
a screenshot is attachedCapture d'écran 2023-09-23 113916.png

 

811
0 Kudos
DPadula
Staff
Staff
In response to Ouams_90

Created on ‎09-21-2023 09:51 PM

Have you added the static route point to your ISP?

Regards
DPadula
849
0 Kudos
Ouams_90
New Contributor
In response to DPadula

Created on ‎09-22-2023 01:30 AM

hi @DPadula 

let me explain.
i have configured my wan with two ip addresses provided by my ISP the first one with my public ip address 41.111....../30
the second ip address 192.168.141.98/30 the gateway between my fortigate and the equipment provided by my ISP is 192.168.141.97

static route configuration: destination 0.0.0.0/0.0.0.0 gateway 192.168.141.97 administrative distance 10

from outside I ping my public address
but locally I don't have internet.

838
0 Kudos
DPadula
Staff
Staff

Created on ‎09-21-2023 09:47 PM Edited on ‎09-21-2023 09:48 PM

 

 

Regards
DPadula
850
0 Kudos
Kush_Patel
Staff
Staff

Created on ‎09-23-2023 04:56 AM

Hello @Ouams_90,

 

From the traceroute, i can see the packet was reaching to 172.16.0.1 (x1 interface of FGT, LAN) and then it is being forwarded to default gateway of your FO 192.168.141.97. After that hop, the paket was not being forwarded. You should check with ISP of FO. 

 

Regards.

806
0 Kudos
Ouams_90
New Contributor
In response to Kush_Patel

Created on ‎09-23-2023 10:41 AM

hi @Kush_Patel 

but i can ping from outside my public ip address linked to my wan 1 41.111.......

attached screenshot

Capture d'écran 2023-09-23 113916.png

Regards

789
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.