Thanks
Is this a question or a feature request? IMHO you're doing it already the way it's got to be.
The next feature request would be to be also able to negate the IP range...
Hi @ede_pfau
Thanks for the response
The way I'm doing it today is frustrating, because sometimes I need to exclude more than one IP, and for that I'm splitting the ip pool into more than two ip pools.
And also I'm not pretty sure about how the Fortigate behave when splitting ip pool into more than one , I mean how it behaves with load balancing the source ip addresses with the NAT overload
is it using equally both ip pools ? is it using the multiple ip pool from top to down in the fwpolicies ?
Thanks
AFAIR pools are used until exhausted, that is, first pool, then next.
User | Count |
---|---|
2046 | |
1169 | |
770 | |
448 | |
339 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.