Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
All vlans are on separate ports on the switch and the FGT unit.If your trying to do this as a switched interface, than I would expect problems like what your describing.
PCNSE
NSE
StrongSwan
What mode is your 60D ports 1-7 in ( hub/switch/internals ) ?not sure - how would I determine what mode it is in? my guess would be it is in whatever the default mode would be. comparing system global setting of the FGT100A to the FGT60D neither shows an explicit mode setting. (the FGT100A does have cc-mode disable)
what mode of operation are we talking about ( nat or transparent )?It should be nat but again how would I know for sure what mode it is in? OK further checking shows it is in NAT mode
Copy of the vlan sub-interface cfg ?config system interface edit " dmz" set vdom " root" set ip 192.168.149.1 255.255.255.0 set allowaccess ping set type physical set snmp-index 4 next edit " internal" set vdom " root" set ip 10.0.0.1 255.255.255.0 set allowaccess ping https ssh http fgfm capwap set type physical set snmp-index 1 set secondary-IP enable config secondaryip edit 1 set ip 192.168.184.98 255.255.255.0 set allowaccess ping https next end next edit " 150 Spinnaker" set vdom " root" set ip 192.168.150.5 255.255.255.0 set allowaccess ping set snmp-index 7 set interface " dmz" set vlanid 150 next edit " 10Dot1" set vdom " root" set ip 10.0.1.1 255.255.255.0 set allowaccess ping https set description " Admin Subnet" set snmp-index 18 set interface " internal" set vlanid 101 next edit " 10DOT2" set vdom " root" set ip 10.0.2.1 255.255.255.0 set allowaccess ping https set description " OPS Subnet" set snmp-index 9 set interface " internal" set vlanid 102 next edit " 103 Wireless" set vdom " root" set ip 10.0.3.1 255.255.255.0 set allowaccess ping https set snmp-index 10 set interface " internal" set vlanid 103 next edit " 10Dot4" set vdom " root" set ip 10.0.4.1 255.255.255.0 set allowaccess ping https set description " 10DOT4 Security Camera Subnet" set snmp-index 11 set interface " internal" set vlanid 104 next edit " 147" set vdom " root" set ip 192.168.147.1 255.255.255.0 set allowaccess ping set snmp-index 12 set interface " internal" set vlanid 147 next edit " 1481" set vdom " root" set ip 192.168.148.17 255.255.255.240 set allowaccess ping set snmp-index 13 set interface " internal" set vlanid 1481 next edit " 1482" set vdom " root" set ip 192.168.148.65 255.255.255.224 set allowaccess ping set snmp-index 14 set interface " internal" set vlanid 1482
PCNSE
NSE
StrongSwan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.