AnsweredHot!How to configure FortiOS/management GUI access from a management VLAN?

Author
csjjpm
New Member
  • Total Posts : 4
  • Scores: 0
  • Reward points: 0
  • Joined: 2021/09/07 23:57:38
  • Status: offline
2021/09/17 11:30:50 (permalink)
0

How to configure FortiOS/management GUI access from a management VLAN?

Hi all.  I'm in a new company just starting up and have borrowed a Fortigate 600D which I'm currently setting up at home on my internal lan. 
The fortigate has taken a 192.168.0.77 address on my network and I am able to access that from a wireless PC on my home network.  Effectively outside my network.
I'm made a softwareswitch (IP 10.0.1.1) of a range of ports in order to have multiple distributed switches be connected to the same VLAN configuration.  I've made half a dozen VLANs and one of those is for managing network devices (VLAN50 10.0.50.1)  That VLAN works fine on the distributed switches as when I connect a computer to an untagged port for VLAN50 it gets an IP 10.0.50.10 and it can also access the internet.
 
My problem is that I want this computer to be able to manage the fortigate on 10.0.1.1 and although I've put a policy in to allow traffic from VLAN50 to the SoftwareSwitch I am unable to open the management GUI.  I can ping 10.0.1.1 but I can't open the GUI.  VLAN1 and VLAN50 also both have HTTP/HTTPS and Fortigate manager all ticked.  Has anyone any suggestions?  Do you need more info?
 
I will utlimately have this device plugged into our business leased line and I'm not sure how safe it is to have management access from external devices?  Some advice on that too would be great.
 
Thank you
Paul
#1
Toshi Esumi
Expert Member
  • Total Posts : 2733
  • Scores: 269
  • Reward points: 0
  • Joined: 2014/11/06 09:56:42
  • Status: offline
Re: How to configure FortiOS/management GUI access from a management VLAN? 2021/09/17 12:13:19 (permalink) ☼ Best Answerby csjjpm 2021/09/20 04:06:44
0
Check if "trusted Hosts" (trusthost1-10 in CLI) are configured for admin users.
#2
csjjpm
New Member
  • Total Posts : 4
  • Scores: 0
  • Reward points: 0
  • Joined: 2021/09/07 23:57:38
  • Status: offline
Re: How to configure FortiOS/management GUI access from a management VLAN? 2021/09/20 01:37:20 (permalink)
0
toshiesumi
Check if "trusted Hosts" (trusthost1-10 in CLI) are configured for admin users.


Hi, thank you for replying.  So I did enable truested hosts but I had originally put in 10.0.0.0/16 as i thought this would give all my 10.0.x.x range access to the GUI.  That doesn't seem to have worked.
#3
csjjpm
New Member
  • Total Posts : 4
  • Scores: 0
  • Reward points: 0
  • Joined: 2021/09/07 23:57:38
  • Status: offline
Re: How to configure FortiOS/management GUI access from a management VLAN? 2021/09/20 01:41:07 (permalink)
0
Ok, so I think it is working now.  Fingers crossed.
 
#4
Jump to:
© 2021 APG vNext Commercial Version 5.5