Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
AbdoSoft
New Contributor

Created on ‎11-11-2020 06:02 AM

Allow traffic between two interfaces problem

Hi Everybody,

I have a problem with allowing traffic between two interfaces of FortiGate 101F. I need to separate a server on an interface different of the LAN I chose DMZ Port , I moved the server to the DMZ and do the configuration the Server Can ping my PC on LAN and I can ping the server on the DMZ but I can't Use any service on this server ( File Share , Remote Desktop , …) only ping is running when I open the logs I found " TCP Reset from client - TCP reset from server " , But when I replaced the Server with a TP-Link Router with the same IP I can access it through the web , Can anyone help me solve this problem, here is the configuration and the logs are attached.

 

 

Preview file
57 KB
Preview file
48 KB
4283
0 Kudos
1 REPLY 1
lobstercreed
Valued Contributor

Created on ‎11-12-2020 03:46 AM

Is there a firewall on the server itself?  That's what it sounds like to me.

 

It won't solve your problem (PLEASE don't leave it like this), but it should point you in that direction if you turn on NAT for the LAN -> DMZ rule.  It might begin working because the server will think the client is in the same subnet and presumably the server firewall was set up to allow intra-subnet traffic (not always, but I've seen it before).

2616
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.