Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
TJMontanes
New Contributor

New IP Subnet has no internet

Hi,

 

Currently having some concerns as I'm adding a /22 on my policy. I have a working configuration for /24 and the new one cant push the internet connection even that policy setup is working before.

1 Solution
akristof
Staff
Staff

Hello,

 

Thank you for question. If you are expanding subnet, I would check couple of things:

- Verify that the new subnet has correct address in all firewall policies

- If FortiGate is also DHCP server, adjust settings there too.

- Verify if there is no subnet overlap and check also overlap with VIPs and ippools

Start with simple ping to internet, check debug flow and packet capture.

Check if traffic is allowed or being blocked, based on that you can follow up with troubleshooting:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Using-filters-to-review-traffic-traversing...

Adrian

View solution in original post

1 REPLY 1
akristof
Staff
Staff

Hello,

 

Thank you for question. If you are expanding subnet, I would check couple of things:

- Verify that the new subnet has correct address in all firewall policies

- If FortiGate is also DHCP server, adjust settings there too.

- Verify if there is no subnet overlap and check also overlap with VIPs and ippools

Start with simple ping to internet, check debug flow and packet capture.

Check if traffic is allowed or being blocked, based on that you can follow up with troubleshooting:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Using-filters-to-review-traffic-traversing...

Adrian
Labels
Top Kudoed Authors