Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Bryan
New Contributor

VLAN to LAN

Hi

I'm using fortigate 60e, version 7.0.1

 

Network Topology: ISP --> WAN 1-Fortigate Fortigate-Internal --> Switch

 

My configuration is this

 

Internal Interface ---

Type: Hardware Switch Interface member: Internal 1

Role: LAN

IP Range: 10.10.10.1-255

 

Internal Sub Interface ---

Name: Floor2_Staff Type: VLAN

Interface: Internal VLAN: 10 Role: LAN IP Range: 10.10.20.1-255

 

Policy for staff

Incoming Interface: Floor2_Staff

Outgoing Interface: WAN1

the rest is All

Made this policy so staff can have Internet. Now the next step is I want the Floor2_Staff with ip of 10.10.20.1-255 to access the server on internal which is 10.10.10.2 (and only this server only) Is this possible? and what step should I do? sorry I'm just new with this fortinet.

1 REPLY 1
Toshi_Esumi
Esteemed Contributor III

Once a vlan sub-interface is configured, policies see it as just an interface. No difference from the parent interface. Try as you're thinking.

Top Kudoed Authors