Hi @AhmedWahba ,

You'd better provide details of all the steps.

my Forti VM has 3 ports started from port0 to port2 on GNS3

and FYI on real Forti VM it has ports from port1 to port3 my problem

is i'm unable to ping from forti to Cisco router

Hi @AhmedWahba ,

Per your network diagram, I assume the Cisco router is R1.  And FGT has 172.16.20.2 and Cisco Router has 172.16.20.1 IPs.

Interesting thing is, the following screenshots about your interface settings say nothing about this 172.16.20.2 Interface IP.

TBH, I don't care about your real FGT interface (port1-port3) and VM interface (port0-port2) mapping. 

What you need to ensure is, which interface in your FGT VM (when you check using CLI) is connected to the Cisco Router.  And can you see the Cisco Router IP in FGT with "get sys arp"? 

And please share your routing table on FGT.

Check the same things on the Cisco router:  Can the Cisco router see FGT IP in arp table?  And what its routing table looks like.

Hi dingjerry_FTNT,,

       Kindly the  interface in my FGT VM is port3.

       and FYI when troubleshoote get sys arp we see noting as MAC is incomplete. and Cisco router cannot see FGT IP in arp table and no routing table as they are P2P.

Hi @AhmedWahba ,

So make sure that FGT port3 has the IP in the same subnet as the one on the Cisco Router.  

As your network diagram, they are 172.16.20.1/24 on FGT and 172.16.20.2/24 on the Cisco Router.

Dear dingjerry_FTNT ,,

       Kindly check the below config 

It seems that port3 ( If I am correct, this is the one in FGT CLI, which is port2 in the network diagram) has a wrong IP configured. 

If port3 in FGT CLI is port2 in network diagram, please change the IP to 172.16.20.2/24

Dear dingjerry_FTNT,

      Kindly you are right and that is what i made.