This saved my ass because I was tasked to setup 4 vlans in our office using a 100E, will be creating 4 ports with 4 subnets and setup routing between them. very useful thank you!
Great video. BTW, you can save time by just creating one policy for the inter-vlan portion. Just create the first one, and then once done, right click on that policy and clone-reverse. It will recreate it in the opposite direction. All you have to do is give its a name. Cheers
You're absolutely right! Nevertheless, I'm well acquainted with the concept of clone reverse. In my opinion, individuals ought to grasp the process of creating things from the ground up. Once they have a solid grasp of the fundamentals, they can gradually acquaint themselves with the more straightforward approaches to accomplishing tasks.
Good video and explanation but use a diagram for the self-paced bro- that way you get likes - someone who knows this will either ignore or just like. Thanks
LAN 2 network has some management features, such as HTTPS or FMG. Once any of the Administrative Access is enabled on that interface that makes it a management interface.
Can I configure IP addresses on both the physical interface and VLAN interface as router on a stick. And reach the physical interface on a switch that has a port in Access mode???
The answer is Yes. You can configure multiple physical and Virtual interfaces and even route between them. What you need is policy. To answer your question YES it is possible
No there is no need to have policy between VLAN but there are reasons to why you may want someone to have access to a specific VLAN other than where they belong. For example if you have a Camera VLAN and you belong to Data VLAN you won't be able to view the camera from your network device in Data VLAN without having a policy to allow your device or the entire Data VLAN. I hope this helps
The access will be applied to the LAN interface e.g port 1 if you are using physical port or the VLAN interface e.g Data VLAN. You can also apply it to multiple interface but not on the zone.
This saved my ass because I was tasked to setup 4 vlans in our office using a 100E, will be creating 4 ports with 4 subnets and setup routing between them. very useful thank you!
I am very happy it was helpful.
very good video Sir.
Great video. BTW, you can save time by just creating one policy for the inter-vlan portion. Just create the first one, and then once done, right click on that policy and clone-reverse. It will recreate it in the opposite direction. All you have to do is give its a name. Cheers
You're absolutely right! Nevertheless, I'm well acquainted with the concept of clone reverse. In my opinion, individuals ought to grasp the process of creating things from the ground up. Once they have a solid grasp of the fundamentals, they can gradually acquaint themselves with the more straightforward approaches to accomplishing tasks.
Good video and explanation but use a diagram for the self-paced bro- that way you get likes - someone who knows this will either ignore or just like. Thanks
Noted
the LAN 2 network is basically the management,right?Great video
LAN 2 network has some management features, such as HTTPS or FMG. Once any of the Administrative Access is enabled on that interface that makes it a management interface.
Can I configure IP addresses on both the physical interface and VLAN interface as router on a stick. And reach the physical interface on a switch that has a port in Access mode???
The answer is Yes. You can configure multiple physical and Virtual interfaces and even route between them. What you need is policy. To answer your question YES it is possible
i have a 80F fortigate and an aruba 1830 switch..is it possible to communicate vlan info between the these devices.
Absolutely. The FortiGate firewall VLAN communicate easily with any managed switch, Cisco, Aruba, HP, Unifi and many more.
well explained. good job. Dropped a LIKE.
Much appreciated!
@@techy-world3716 and I subbed! Keep doing what you do, bro. ;-)
excelente
is there any need to have policy between one vlan in firewall?
No there is no need to have policy between VLAN but there are reasons to why you may want someone to have access to a specific VLAN other than where they belong. For example if you have a Camera VLAN and you belong to Data VLAN you won't be able to view the camera from your network device in Data VLAN without having a policy to allow your device or the entire Data VLAN. I hope this helps
After doing this i am not able to access the firewall from lan zone. So how to get access it.
The access will be applied to the LAN interface e.g port 1 if you are using physical port or the VLAN interface e.g Data VLAN. You can also apply it to multiple interface but not on the zone.
Yes, I have created a data vlan 10 under port 1 and i am trying to access it from vlan 10 interface also https is enabled on that interface.
Have you lost all access to the device or can you get in via console or ssh?
The device you are accessing it from must be in VLAN 10 subnet as well. That is very important
If you are still having issue, I can look at in over a remote session if you want.
where is the live testing you did not connect anything and test anything or live anything
Point taken, I will ensure that I show more testing in my next videos. But be assured that these steps are what is required on the FortiGate.