Hi
I am unable to ping the fortinet gateway IPv6 from servers but the fortinet can ping the ipv6 addresses on our servers. Seems to be blocked by fortinet. We are able to ping ipv4 addresses both ways. Ping is set to allow and I'm unclear whatelse is wrong.
Could be a bug. Seems like it isn't necessarily typical to use all 0 for the host portion of the address...I could be wrong, my IPv6 is limited. Have you tried changing the address on the FortiGate, for example to fd69:93c1:8105:60e9::1/64? Could also be a bug with ULA implementation, so you could maybe try using a valid global unicast address.
Diag debug flow is your friend but I have to aggreed that is not the correct method to address a iv6 interface if you want a address apply a 1 or something
e.g
2001:db8:99::1
NOTE : Do not use "0"
no good set ip6-address 2001:db8:99::/64
no good set ip6-address 2001:db8:99::0/64
good set ip6-address 2001:db8:99::1/64
Ken Felix
PCNSE
NSE
StrongSwan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.