Dear All,
I'm using the FortiGate 100D and I am using 802.3ad Aggregate interface. One another device is plugged into another port of the FortiGate (port 3) (IP static is 10.199.139.200). I have created one policy for I can go to that port 3 but I can't ping to the IP 10.199.139.200 when I'm in the 802.3ad Aggregate interface network. I can ping that IP from FortiGate. I don't why?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Can you collect "diag sniffer packet any "host 10.199.139.200" 10, from Fortigate while you try to ping from the aggregate interface network? This will help us to confirm if the packet is reaching fortigate or not and then decide further torubleshooting steps.
Dear srajeswaran,
How I can send you packet-capture.pcap file, I'm new member.
I don't think you can attach it, can you take a screenshot and paste it?
Dear,
You mean this one?
yeah, on this one I see ICMP from 10.199.139.200 to 10.199.139.1, similarly , can you capture when you try to ping 10.199.139.200 ?
Dear Mr,
That is the capture from FortiGate while I ping from the aggregate interface network. This is capture from Wireshark software while I ping from the aggregate interface network to "10.199.139.200".
Open fortigate CLI as below and run " diag sniffer packet any "host 10.199.139.200" 10 "
This will confirm if the ICMP packet from your PC is reaching the firewall or not.
Send to you,
We don't see the packet from 10.199.129.149 reaching Fortigate.
is this the simple topology?
(10.199.139.200)Port3 [FortiGate]Aggregate---------------------PC(10.199.129.149)
Can you confirm the Ip/subnet mask for your PC, port3, aggregate interfaces.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.