Firewall: FortiGate 60F
Firmware: 6.4.8 Build 1914 (GA)
Mode: NAT
NGFW Mode: Profile-based
Central SNAT: Enabled
Switches: S148FP
Switches Firmware: S148FP-v7.0.2-build0049
Issue: VLAN 30 (Workstations) cannot add a printer via TCPIP to VLAN 60 (Printers)
Firewall Policy is set to wide open for traffic to pass either way, but cannot connect any printer.
I have tried to use a NAT rule going both ways with no luck.
Also tried a multicast policy both way with no luck.
Been going back and fourth with a Fortinet tech but have gotten no where.
If more details are required, please let me know.
Any advise would be appreciated.
What printer is it? Check the port its listening to (usually 9100 or 515) on the printers web page...
Then use the windows add printer wizard again and manually set choose tcp ip port just to check if that works (bypass the auto detect)
After you got a tcp ip port on windows printer, send a print and see if it helps / check forti logs...
BitDefender Gravity Zone was the cause. The fix was to allow Network Printing under Policies > {policy name} > Firewall > Rules > Rules.
After that all printing worked as expected. All that was needed was to ensure that the workstation needing to print has a firewall rule that allowed the right traffic to the printer.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.