We have two WAN links from two different ISPs coming into our
active/passive HA pair of FortiGate 300Es running v7.4.7 build2731
(Mature). Currently there is no aggregation or load balancing in place.
They are just two separate circuits, and one isn'...
For some quick background, I'm trying to establish IPsec VPN tunnels
with a fleet of transit buses to allow access to some on-prem servers at
our headquarters. Each bus has a non-FortiGate cellular router using the
same 192.168.x.0/24 internal subnet...
Working on a project that is going to involve around 150 site-to-site
IPsec tunnels. Near end is a FortiGate 300E. Remote ends are Digi TX64
cellular routers installed on transit buses. IPsec setup is
straightforward enough. The issue is all of the b...
I'm working on setting up an IPSEC VPN tunnel between a remote cellular
router (Digi TX64) and the FortiGate 300E at our headquarters. I've got
the tunnel up and stable, but can't seem to get traffic to flow
properly. If I run a ping from a device be...
Trying to figure out the best way to handle setting up VPN tunnels for
about 200 mass transit buses. Each bus has a Digi TX64 cellular router
installed, and they are all configured to use the same internal subnet
for the equipment on board the bus. W...
Right, but I'm not trying to ping anything on VLAN 2001. I'm trying to
ping the aggregated FortiGate interface that is attached to
channel-group 1 on the Cisco switch. From the CLI on the switch, I can
ping the non-aggregated FortiGate interface that...
I verified that the Catalyst also sees everything with the port channels
as being good: ISP_2960G_SW1#show lacp internalFlags: S - Device is
requesting Slow LACPDUsF - Device is requesting Fast LACPDUsA - Device
is in Active mode P - Device is in Pas...
I tried changing the lacp mode setting to static. It caused all of the
port-channel ports on the Cisco switch to drop from status bndl to
status indep. I had to change the port-channel configs from mode
"active" to mode "on" to get the port-channels ...
config system interface edit "Coach-21xx-VPN" set vdom "root" set vrf 9
set type tunnel set snmp-index 49 set interface "port15" next edit
"Coach21xxVR0" set vdom "root" set vrf 0 set priority 1 set
dhcp-relay-interface-select-method auto set managem...
