- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
VDOM Routing
Hi,
I am new to Fortigate. I got 4 Vdoms (Management Vdom configuration). I am following link http://help.fortinet.com/fos50hlp/52data/Content/FortiOS/fortigate-virtual-domains-52/inter-VDOM.htm...
Can I put any IP address for link interface? In example, both accounting and sales link got 10.0.1.0
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If you don't need NAT and not directly connect to the VDOM links, you don't have to assign any IP on the VDOM links, this would simplify the configuration for you. If you want to route something over the VDOM link, set the gateway in the route to 0.0.0.0 and it works.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I prefer ipv4 address and you can set the links as ethernet or p2p. I post this a few years back for examples
http://socpuppet.blogspot.com/2014/09/a-stacked-vdom-concept-with-fortigate.html
http://socpuppet.blogspot.com/2014/09/a-meshed-vdom-transparent-using-inter.html
PCNSE
NSE
StrongSwan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thanks emnoc, I will try this and update..
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Did you activate NAT on the policy VDOM-Link > Internet?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Oheigl,
Thanks for your reply. I didn't put IP for vdom link and I did following:
1. Vdom A: Policy to allow traffic over Vdom link. Route all traffic to Vdom link
2. Root: Policy to allow traffic from Vdom link. Route to internet.
Root can access internet. Vdom A cannot. Not sure what part I am missing here.