Dear All,
I'm using the FortiGate 100D and I am using 802.3ad Aggregate interface. One another device is plugged into another port of the FortiGate (port 3) (IP static is 10.199.139.200). I have created one policy for I can go to that port 3 but I can't ping to the IP 10.199.139.200 when I'm in the 802.3ad Aggregate interface network. I can ping that IP from FortiGate. I don't why?
Solved! Go to Solution.
Can you collect "diag sniffer packet any "host 10.199.139.200" 10, from Fortigate while you try to ping from the aggregate interface network? This will help us to confirm if the packet is reaching fortigate or not and then decide further torubleshooting steps.
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
Dear srajeswaran,
How I can send you packet-capture.pcap file, I'm new member.
I don't think you can attach it, can you take a screenshot and paste it?
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
Dear,
You mean this one?
yeah, on this one I see ICMP from 10.199.139.200 to 10.199.139.1, similarly , can you capture when you try to ping 10.199.139.200 ?
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
Dear Mr,
That is the capture from FortiGate while I ping from the aggregate interface network. This is capture from Wireshark software while I ping from the aggregate interface network to "10.199.139.200".
Open fortigate CLI as below and run " diag sniffer packet any "host 10.199.139.200" 10 "
This will confirm if the ICMP packet from your PC is reaching the firewall or not.
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
Send to you,
We don't see the packet from 10.199.129.149 reaching Fortigate.
is this the simple topology?
(10.199.139.200)Port3 [FortiGate]Aggregate---------------------PC(10.199.129.149)
Can you confirm the Ip/subnet mask for your PC, port3, aggregate interfaces.
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.