Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Gautam
New Contributor

VDOM Routing

Hi,

I am new to Fortigate. I got 4 Vdoms (Management Vdom configuration). I am following link http://help.fortinet.com/fos50hlp/52data/Content/FortiOS/fortigate-virtual-domains-52/inter-VDOM.htm...

Can I put any IP address for link interface? In example, both accounting and sales link got 10.0.1.0

 

 

5 REPLIES 5
oheigl
Contributor II

If you don't need NAT and not directly connect to the VDOM links, you don't have to assign any IP on the VDOM links, this would simplify the configuration for you. If you want to route something over the VDOM link, set the gateway in the route to 0.0.0.0 and it works.

emnoc
Esteemed Contributor III

I prefer ipv4 address   and you can set the links as  ethernet or p2p. I post this a few years back for examples

 

 

http://socpuppet.blogspot.com/2014/09/a-stacked-vdom-concept-with-fortigate.html

http://socpuppet.blogspot.com/2014/09/a-meshed-vdom-transparent-using-inter.html

 

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
Gautam
New Contributor

Thanks emnoc, I will try this and update..

oheigl
Contributor II

Did you activate NAT on the policy VDOM-Link > Internet?

Gautam
New Contributor

Hi Oheigl,

Thanks for your reply. I didn't put IP for vdom link and I did following:

1. Vdom A: Policy to allow traffic over Vdom link. Route all traffic to Vdom link

 

2. Root: Policy to allow traffic from Vdom link. Route to internet. 

 

Root can access internet. Vdom A cannot. Not sure what part I am missing here. 

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors