I am trying to use a fortigate 60F to segregate my OT network, so SCADA
from ICS. I already have switches in place, so trying to use what is
there. Currently testing on the bench, with 2 managed switches connected
to the FGT, each switch represents o...
This is packet sniffer on the initiating hostFortiGate-60F # diag
sniffer packet any 'host 10.1.0.36 and icmp' 4 interfaces=[any]
filters=[host 10.1.0.36 and icmp] 27.081569 scda in 10.1.0.36 ->
10.1.1.35: icmp: echo request 27.082727 ics out 10.1.0....
FortiGate-60F # show system interface config system interface edit
"wan1" set vdom "root" set mode dhcp set allowaccess ping fgfm set type
physical set role wan set snmp-index 1 next edit "wan2" set vdom "root"
set mode dhcp set allowaccess ping fgfm...
Assigning an IP to both physical interfaces, then assigning them to
zones, and making the policies zone based results in this same debug.
Hardware switch results in the same debug. Software switch did not work.
It looks like the packets get to the de...
