Hi All,
In the organization WIFI is controller by FortiNet WLAN Controller (MC1550).
It was noticed that devices connected to Wi-Fi send traffic over WLAN controller and not directly via default gateway.
Is it normal for FortiNet wireless controller to act as a router?
If yes could you please help to set up a static route.
There is an IPSec VPN tunnel between the office and the environment in Azure and devices conencted to wi-fi can't communicate with Azure infrastructure as the wireless controller seems doesn't know where to forward traffic.
I can confirm that for the wireless network 192.168.9.0 the default gateway IP is 192.168.9.5.
I also tried to add static route manually route -p add 10.55.35.0 mask 255.255.255.0 192.168.9.5 but that didn't help either.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi @MadDog_2023,
Traffic should go to the default gateway unless you have a specific route to 10.55.35.0/24. Please check your routing-table by running "route print". You also need to create rules to allow traffic on the WLC.
Regards,
Created on 03-01-2024 01:54 PM Edited on 03-01-2024 03:43 PM
Hi @hbac
As I mentioned I added route manually route -p add 10.55.35.0 mask 255.255.255.0 192.168.9.5 on a desktop but traffic still goes through wireless controller.
192.168.9.5 is a default gateway.
192.168.9.XXX is the IP address of the desktop.
You also need to create rules to allow traffic on the WLC.
Where do I do that?
P.S. On the FortiGate router there is a route that send traffic to 10.55.35.0/24 over VPN to Azure. It is just for some unknown reason the wireless controller send traffic through itself which I've never seen before. If it is how FortiNet Wireless Controller works then there should be an option to add a route.
Hi @MadDog_2023,
Please refer to https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/f8902d66-dfb2-11e9-8977-005056...
Regards,
Hi @hbac
Thanks for the link.
It may be what I'm after.
However, when I try to add a static route the field for an interface name is empty.
Is it related to VLAN interface?
If yes, could you please help with the VLAN interface fields (IP address and Default Gateway).
Hi All,
Can someone please help me with this.
With all the pleasure I would get rid of that FortiNet Controller and replace with something else but it will take some time and for now I need to set up a static route.
No idea why that controller acts as a router but that's another story.
Thanks in advance.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1714 | |
1093 | |
752 | |
447 | |
232 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.