Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
wajdi_hammami
New Contributor

policy work on ztna tags that are in the lan but not outside

Hello,

 

so i'm trying to grant to my network (172.29.23.0/24) access to computers that have ztna tags using a fortigate firewall (7.0.6).

 

Tags are working fine and they are able to identifiy desired ips.

The problem is that my policies work well on tags that has an ip in my network (172.29.23.0/24) but doesn't

on the other ips.

 

If i remove the tags policies work as intended.

 

I hope i explained the issue well.

If someone can help thanks.

 

 

4 REPLIES 4
Anonymous
Not applicable

Hello @wajdi_hammami ,

 

Thank you for using the Community Forum.

 

I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.

 

Regards,

   Fortinet Community Team.
wajdi_hammami

hi,

 

any idea ?

Anonymous
Not applicable

Hi @wajdi_hammami 

 

Perhaps a suggestion for you to open a ticket as this needs to troubleshoot deeper - could be a misconfiguration.
peisenberg

Hello @wajdi_hammami 

do you still need help with your issue ? How are you affected endpoints connected to your fortigate ? (for dynamic policy fgt need to be directly connected/vpn)

thanks

Pavol

TAC
Labels
Top Kudoed Authors