Hello,
I am in interface mode, I have configured vlan subinterfaces Under the internal2 link of my Fortigate 200A. The problem is that we are unable to ping the IP address of these interfaces from a PC on the network.
I have created 5 vlans : 182, 183, 184, 185, 186 on my Cisco switch. The internal 2 link is connected with a trunk interface switch with the 5 tagged vlans. I have created also policies for these interfaces. The problem is that the internal2 ip address is also unreachable.
Could you please help me, please?
Thank you in advance for your support
Chris
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
have you allowed pings on the interfaces?
Agree, but the cli cmds diag debug flow and diag sniffer packet are your 2 best friends. It will confirm your layer2 tags are correct at the packets made it from the cisco switch with a 802.1q tag.
PCNSE
NSE
StrongSwan
Have you made sure that your PC is part of the VLAN whose gateway you're pinging? And if so, how?
(rationale: if the PC is not in VLAN 187 it will ping on VLAN 1 and won't be able to reach the other network)
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1710 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.