Hot!Fortiview-does not correctly identify macaddres/soucedevice, shows all with mac from core

Author
MegaSistemas
New Member
  • Total Posts : 9
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/06/05 08:12:14
  • Status: offline
2018/06/07 13:02:58 (permalink)
0

Fortiview-does not correctly identify macaddres/soucedevice, shows all with mac from core

Hello guys, I have a FG 200D, version 5.6.2, it and my servers are in the same vlan 0. The other machines in sectors are in their vlans 1,2,3,4 ...
 
When I use Fortiview, it shows the IP but does not correctly identify the mac. I see you're bringing in the mac of the switch core that does the routing of the network.
 
 
Fortiview.jpg                 
 
 
Is there any configuration that can be made to work correctly, without having to take the routing of the switch core to play on top of the FG?
 
hugs

Attached Image(s)

#1

4 Replies Related Threads

    Nicholas Doropoulos
    Silver Member
    • Total Posts : 70
    • Scores: 2
    • Reward points: 0
    • Joined: 2018/05/03 13:49:11
    • Status: offline
    Re: Fortiview-does not correctly identify macaddres/soucedevice, shows all with mac from c 2018/06/08 14:17:18 (permalink)
    0
    What if you run get sys arp on the cli? Would it show the mac addresses there correctly?

    NSE5, NSE 4, CCSA, CCNA R&S, CompTIA A+, CompTIA Network+, CompTIA Security+, MTA Security, ITIL v3
    #2
    neonbit
    Expert Member
    • Total Posts : 468
    • Scores: 51
    • Reward points: 0
    • Joined: 2013/07/02 21:39:52
    • Location: Dark side of the moon
    • Status: offline
    Re: Fortiview-does not correctly identify macaddres/soucedevice, shows all with mac from c 2018/06/09 02:43:22 (permalink)
    0
    To see the MAC and proper device identification the devices need to be 'directly' connected to the FortiGate. If your switch is doing routing then the FGT will only see the switches MAC address.
     
    Ideally you would replace the switch with a FortiSwitch to get full visibility on your network and allow much greater centralised control of those devices.
     
    Alternatively you could install FortiClient on the servers and have them register to the the FortiGate to get the correct information.
    #3
    MegaSistemas
    New Member
    • Total Posts : 9
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/06/05 08:12:14
    • Status: offline
    Re: Fortiview-does not correctly identify macaddres/soucedevice, shows all with mac from c 2018/06/11 13:03:04 (permalink)
    0

    Hello
     
    I run the command, several macs from my network 0, because that's where I have FG and Servers. The macs of machines of other vlans do not appear, only a line that is of the switch core that does the routing.
     
    10.0.0.254        0          74:a2:e6:3a:9d:d1 lan
    #4
    MegaSistemas
    New Member
    • Total Posts : 9
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/06/05 08:12:14
    • Status: offline
    Re: Fortiview-does not correctly identify macaddres/soucedevice, shows all with mac from c 2018/06/12 11:36:24 (permalink)
    0
    Neonbit
     
    With FortiSwitch it would be possible, but does not the conventional switches have any configuration that allows this?
     
    Thanks for the feedback
    #5
    Jump to:
    © 2018 APG vNext Commercial Version 5.5