fowlrock
2[H]4U
- Joined
- Sep 27, 2002
- Messages
- 2,529
Got an oddball thing going on as far as the Fortinet goes. Situation:
1) Using a fortigate 60D as a VPN device
2) Switch behind the firewall is a Cisco 2960X
3) Local LAN (1) and VOIP(10) Vlans
On this Cisco:
trunk to fortinet
sw mode trunk
sw trunk allowed vlan 1,10
SVI setup for the local subnets one each vlan interface
On the fortigate, sub interfaces were created with the same VLANs and subnets
Not getting getting either device to show up in each other's ARP or mac table with this config. The only way I got this to work was to set the internal interface on the Fortinet to VLAN1's subnet and left the Voice vlan alone.
Why the crap can a fortigate not accept tagged traffic when there is a sub interface setup for this vlan?
I only have read-only access to the firewall as we have a provider that manages them, but the are trying to tell me that Fortigates can't tag or untag packets - this does not compute to me.
1) Using a fortigate 60D as a VPN device
2) Switch behind the firewall is a Cisco 2960X
3) Local LAN (1) and VOIP(10) Vlans
On this Cisco:
trunk to fortinet
sw mode trunk
sw trunk allowed vlan 1,10
SVI setup for the local subnets one each vlan interface
On the fortigate, sub interfaces were created with the same VLANs and subnets
Not getting getting either device to show up in each other's ARP or mac table with this config. The only way I got this to work was to set the internal interface on the Fortinet to VLAN1's subnet and left the Voice vlan alone.
Why the crap can a fortigate not accept tagged traffic when there is a sub interface setup for this vlan?
I only have read-only access to the firewall as we have a provider that manages them, but the are trying to tell me that Fortigates can't tag or untag packets - this does not compute to me.