Hello Guys,
I have 100D Firewall and I Have mistakenly disabled the Lan Policy for Fortigate firewall, now I am not able access the Firewall from https / http the ip range of lan is 192.168.100.1/32. The default management ip 192.168.1.99 I DO NOT see any Led light are blinking on the firewall for the Lan port. I am able to open the firewall GUI page from Browser.
However, I am able to Connect the firewall from console port and I can see the management ip is 192.168.1.99 http, https, fgm everything is enabled, but unable to browse the firewall ip.
If I could get any of the CLI Command or step by step instructions to Enable the lan policy again, or any other way so that I can reach the firewall from GUI will be helpful,
Thanks Everyone.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello @eliaslatif ,
You can create a simple policy with these commands.
config firewall policy
edit 0
set name LAN_POLICY
set srcintf <SRC_INTF>
set dstintf <DST_INTF>
set action accept
set srcaddr "all"
set dstaddr "all"
set schedule "always"
set service "ALL"
set logtraffic all
next
end
Hello Ozkan,
Thankyou for quick Response, I will follow this instruction and let you know.. :)
if there is something connected to your FGTs LAN Interfaces but nothing blinks or lights this might mean that you dactivated the interface in accident.
You can check that on console:
config system interface
edit <interfacename>
show full
then check for status. If that says "down" simply set it to "up".
set status up
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
Thank you Sir, I'll check that too.. !! Appreciate your help ☺️
hello,
when i put the command "get system interface" i am not able to See the Lan Interface. however i can see the wan1 Wan2, Modem Etc But NOT lan, As i said i mistakenly disabled the Lan Interface, and i am unable to browse the lan Ip of the firewall from Web.
Hi @eliaslatif,
What is the IP address you used to access on the browser? For example: 192.168.1.99. Run the following command:
show system interface | grep 192.168.1.99 -f
Regards,
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.