I'm definitely a beginner with Fortigate, but have some experience with
stateful firewalls (from iptables). I'm setting up a system (Fortigate
30E) which should look like: SD-WAN (wan + lan4) -> two different
internet connections, select ports forwar...
Here are the packet logs. I didn't filter for the Fortinet DNS servers,
so you don't see the ICMP replies to them, or the DNS responses coming
from them. However, in another trace I did see the same thing for those
as I see for the google name server...
Dave,I've already tried without the static rules, and (because of our
internal network topology) they are required.I don't see DNS override on
either interface.I'll check DHCP and edit the packet logs to sanitize
them so I can post them after lunch.T...
orani,Thank you. I tried to drag before, but it was in interface pair
view and would not let me. Now I see the priority (from highest to
lowest) is 1, 2, 3, 0. My problem is with traffic from rule 3; rule 2
traffic works correctly. Should I move rule...
orani,Thanks for the quick reply. I haven't been ordering the rules
myself. The numbering is generated by the FortiGate GUI, and the actual
order they occur in that interface is based on the interfaces involved.
How do I1) Determine the actual order ...
