Hello Dears
I want to make source ping from fortigate firewall device towards internet since by default it is blocked take in mind i am not using VODM anyone can help
Bests
By default it should be allowed, do you have a route ? Can you share the route, interface IP and error you are getting?
Hello Dear
thnx for reply
yes default route , NAT configred but no lack to reach internet as show on attached
the IP address is set to port6 as secondary ip address
Hello @MustphaBassim ,
Thank you for contacting the Fortinet Forum portal.
-You are using correct method on other window can you run below sniffer to see if you are getting reply back ?
diagnose sniffer packet any "host 10.150.39.241 and host 8.8.8.8" 4 0 l
ctrl+c to stop sniffer
-If it is ISP secondary check if the arp entry for secondary wan gateway IP is there on FortiGate by command
get system arp
articles for ping-options:
Best regards,
Manasa.
If you feel the above steps helped to resolve the issue mark the reply as solved so that other customers can get it easily while searching on similar scenarios.
Hi @MustphaBassim,
You can use a sniffer on another cli as shown below to verify the interface being used by FortiGate.
Dia sniffer packet any ' host 8.8.8.8 and icmp ' 4 0 l
Regards
Rajan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.