Good evening, Experiencing an issue with FG Routing can anyone assist, I
have the following setup on a Proxmox node: 1. Ubuntu (Client) 2.
Foritgate Firewall The Client has two interfaces attached with the
following networks: 1. 192.168.61.X for mana...
Good evening, Experiencing an issue with FG Routing can anyonn assist, I
have the following setup on a Proxmox node: 1. Ubuntu (Client) 2.
Foritgate Firewall The Client has two interfaces attached with the
following networks: 1. 192.168.61.X for mana...
Good Morning, Currently I have encountered an issue syncing my
fortimanager policy with my fortigate unit.According to the install log
(Attached), i am getting the error "entry not found in datasource". This
error is for a group called"Head_Office_Ex...
Good Morning, Currently I have encountered an issue syncing my
fortimanager policy with my fortigate unit. According to the install log
(Attached), i am getting the error "entry not found in datasource". This
error is for a group called "Head_Office_...
UPDATE: So the issue was that SNAT was enabled and what i did was enable
central NAT and create a rule for the central NAT to use the outgoing
interface address: unfortunately im now faced with the following error
-> FortiOS-VM64-KVM #FortiOS-VM64-KV...
Hi amouawad, So i attempted the steps you outlined: Quick note, i
changed the LAN IP's to 192.168.2.0/24 and the fortigate interface to
192.168.2.2 here are the results: FortiOS-VM64-KVM # diag deb
enableFortiOS-VM64-KVM # diag sniffer packet any 'ho...
Yeah i believe that you are right NAT is not working, based on the debug
output im not seeing anything nat related. "Something is quite odd"
Exactly my thoughts. Your output is what id expect..
"Just for a quick sanity check, are you able to change the source
address to 'all' in the policy and test (just to make sure it's not the
address configuration)." Yes I had it on ALL ALL previously for the sake
of testing it still didn't work. That's...
Thanks for your reply Toshi_Esumi, The thing is that because NAT is
enabled the WAN Router shouldn't see any 10.0/24 addresses only
addressed natted based on the FG interface connected to it and reply to
that. I do see what youre saying though, howev...