hi,i'm trying to configure a VDOM link between 'root' and a separate
VDOM 'internet' which provides public/internet access. i tried to
configure first a plain VDOM link but when i try to edit, i can't add it
to an 'npu_vlink' interface.but when i tri...
hi,i just enabled Multi-VDOM in my FGT with HA.i plan to create an
Internet access VDOM topology per link below and created a new
"Internet"
VDOM.https://docs.fortinet.com/document/fortigate/7.2.4/administration-guide/597696/vdom-overview#Topologies
...
hi,i managed to built HA active-passive between two 40F.i lost
HTTPS/ping access to secondary since it sync'd with primary IP in lan1.i
already remove FW policy and static route for lan1 but i'm still unable
to add lan1 in HA MGMT interface reservati...
hi,i just built HA active-passive.i lost HTTPS on the secondary FW since
it sync'd with primary FW MGMT (lan1) interface.i was trying to
configure secondary HA MGMT interface but doesn't allow me.my question
is, how do you "default"/remove MGMT confi...
hi,i'm going to setup a pair of FG. just would like to know what is the
best practice, do i configure HA active-standby first or create VDOMs
first?appreciate fortinet links/guides. TIA!
hi,thanks! i managed to create NPU VDOM link using VLAN for
root-internet.i also managed to create static route and FW policy and
root VDOM was able to get internet and able to reach fortiguard
cloud.i'll probably use a "higher" VLAN number, i.e. 400...
hi,thanks for the info!i guess i need to create a new interface, create
a common VLAN and /30 IP subnet and put each npu_vlink on a VDOM.is the
VLAN just internal on the FG? i.e it doesn't need to be an interface
connected to an physical switch?i.e. ...
hi,i managed to move interfaces to a new VDOM. the column "Ref" was
really helpful pointing out the dependencies. i just removed FW policy,
static route, and IP address related to the interfaces under the root
VDOM.
hi,you mean remove dependencies on these interfaces? are these FW
policy? static routes?is there a "quick" or convenient way of checking
whether interfaces have any dependencies on them? i'm always caught by
this dilemma :(
hi,i managed to delete "lan1 address" after i set lan1 role to
"undefined". thanks for your help! i need to speed up learning FGT since
we're doing a HW refresh on our FW. i think i also need to learn a bit
more CLI if i don't fix things via GUI. FW0...
