Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Lapecandcie
New Contributor

Problem with vlan subinterface configuration

Hello,

 

I am in interface mode, I have configured vlan subinterfaces Under the internal2 link of my Fortigate 200A. The problem is that we are unable to ping the IP address of these interfaces from a PC on the network.

I have created 5 vlans : 182, 183, 184, 185, 186 on my Cisco switch. The internal 2 link is connected with a trunk interface switch with the 5 tagged vlans. I have created also policies for these interfaces. The problem is that the internal2 ip address is also unreachable.

 

Could you please help me, please?

 

Thank you in advance for your support

 

Chris

3 REPLIES 3
shane_85
New Contributor

have you allowed pings on the interfaces?

emnoc
Esteemed Contributor III

Agree, but the cli cmds diag debug flow and diag sniffer packet are your 2 best friends. It will confirm your layer2 tags are correct at the packets made it from the cisco switch with a 802.1q tag.

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
ede_pfau

Have you made sure that your PC is part of the VLAN whose gateway you're pinging? And if so, how?

 

(rationale: if the PC is not in VLAN 187 it will ping on VLAN 1 and won't be able to reach the other network)

Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors