Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MadDog_2023
New Contributor III

Created on ‎02-29-2024 06:19 PM Edited on ‎03-01-2024 01:03 AM

Wireless connected devices send traffic over wireless controller

Hi All,

In the organization WIFI is controller by FortiNet WLAN Controller (MC1550).

 

image_2024-03-01_130958232.png

 

It was noticed that devices connected to Wi-Fi send traffic over WLAN controller and not directly via default gateway.

 

image_2024-03-01_131319688.png

 

Is it normal for FortiNet wireless controller to act as a router?

If yes could you please help to set up a static route.

There is an IPSec VPN tunnel between the office and the environment in Azure and devices conencted to wi-fi can't communicate with Azure infrastructure as the wireless controller seems doesn't know where to forward traffic. 

 

fortinet2.jpg

 

I can confirm that for the wireless network 192.168.9.0 the default gateway IP is 192.168.9.5.

I also tried to add static route manually route -p add 10.55.35.0 mask 255.255.255.0 192.168.9.5 but that didn't help either.

Labels:
322
0 Kudos
5 REPLIES 5
hbac
Staff
Staff

Created on ‎03-01-2024 06:51 AM

Hi @MadDog_2023,

 

Traffic should go to the default gateway unless you have a specific route to 10.55.35.0/24. Please check your routing-table by running "route print". You also need to create rules to allow traffic on the WLC.

 

Regards, 

282
0 Kudos
MadDog_2023
New Contributor III
In response to hbac

Created on ‎03-01-2024 01:54 PM Edited on ‎03-01-2024 03:43 PM

Hi @hbac 

As I mentioned I added route manually route -p add 10.55.35.0 mask 255.255.255.0 192.168.9.5 on a desktop but traffic still goes through wireless controller. 

192.168.9.5 is a default gateway.

192.168.9.XXX is the IP address of the desktop.

 

You also need to create rules to allow traffic on the WLC.

Where do I do that?

 

P.S. On the FortiGate router there is a route that send traffic to 10.55.35.0/24 over VPN to Azure. It is just for some unknown reason the wireless controller send traffic through itself which I've never seen before. If it is how FortiNet Wireless Controller works then there should be an option to add a route.

274
0 Kudos
MadDog_2023
New Contributor III
In response to hbac

Created on ‎03-03-2024 01:28 PM

Hi @hbac 

Thanks for the link.

It may be what I'm after.

However, when I try to add a static route the field for an interface name is empty. 

 

image_2024-03-04_082558193.png

 

Is it related to VLAN interface?

If yes, could you please help with the VLAN interface fields (IP address and Default Gateway).

 

wireless 2.jpg

202
0 Kudos
MadDog_2023
New Contributor III

Created on ‎03-12-2024 06:58 PM

Hi All,

 

Can someone please help me with this.

With all the pleasure I would get rid of that FortiNet Controller and replace with something else but it will take some time and for now I need to set up a static route.

 

No idea why that controller acts as a router but that's another story. 

 

Thanks in advance.

160
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.