Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Suh_Ahamed
New Contributor

Created on ‎12-19-2023 06:47 AM

Transparent Mode

Hello Dears,


We have requirements to configure the firewall without changing the IP addresses on the existing infra.

We have a plan to configure the Firewall in Transparent Mode.

1) The customer has a flat network, From the core switch is the gateways three links are connected to the three different gateway routers with the same subnets.

2)We going to place a  firewall between the core switch (3 LAN  ports ) & ( 3 WAN ports )gateway router, So that each link will connect to the Firewall ports. 

3) The Core switch has different static routes pointing to three different gateway routers.

4) in the Transparent Mode corresponding policy needs to be created along with Mgmt IP 

Does any other layer two loopings will occur in this scenario?

Please share your experiences.

 

Labels:
1272
0 Kudos
14 REPLIES 14
adambomb1219
SuperUser
SuperUser

Created on ‎12-19-2023 06:51 AM

Why use transparent mode at all?  This really sounds like an opportunity for a network redesign instead.  Move all layer3 and WAN functions to the FortiGate.

883
Suh_Ahamed
New Contributor
In response to adambomb1219

Created on ‎12-19-2023 06:56 AM

Dear,

 


Yes, absolutely right, but the customer don’t want to change the IP address.

 

 

876
0 Kudos
adambomb1219
SuperUser
SuperUser
In response to Suh_Ahamed

Created on ‎12-20-2023 05:07 AM

Why can't you just move that IP address to the FortiGate?  Perform a hot cut from whatever the layer3 device is today to the FortiGate.

838
Suh_Ahamed
New Contributor
In response to adambomb1219

Created on ‎12-20-2023 05:24 AM

Dear,

The challenge that we have here is that three gateway routers are using the same IP address segment and are connected to the L3 switch with physical connections. We can't change any IP address from existing infra.

We want to add a firewall for the security inspection only.

831
0 Kudos
adambomb1219
SuperUser
SuperUser
In response to Suh_Ahamed

Created on ‎12-20-2023 11:51 AM

How do you have 3 devices with the same IP?  Different VLANs have the same IP?

815
Suh_Ahamed
New Contributor
In response to adambomb1219

Created on ‎12-20-2023 08:29 PM

Dear,

single router and three routers using same ip address segment.

797
0 Kudos
adambomb1219
SuperUser
SuperUser
In response to Suh_Ahamed

Created on ‎12-21-2023 04:22 AM

I'm not following

786
0 Kudos
Suh_Ahamed
New Contributor
In response to Suh_Ahamed

Created on ‎12-23-2023 11:06 PM

Dear,

Sorry, a Single LAN Segment and three Gateway routers use the same IP address segment.

688
0 Kudos
Suh_Ahamed
New Contributor

Created on ‎12-20-2023 06:15 AM

Dear

This scenario is possible in Transparent Mode?

 

 

TP MOde-2.png

 

823
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.