Fortigate Firewall VLAN configuration
HTML-код
- Опубликовано: 19 авг 2024
- We will use fortigate firewall and cisco switch for inter vlan routing configuration.
Here you can download directly from my file for GNS3 resources needed.
Windows OS image drive.google.c...
CISCO Images : drive.google.c...
GNS3 for Windows : drive.google.c...
Firewall_Router : drive.google.c...
VMware WorkStation 12 : drive.google.c...
Here is another video related to Networking
How to configure VPN site to site on Cisco Router • How to configure VPN s...
How to add Fortigate and Mikrotik firewall for GNS3 • How to add Fortigate a...
How to add cisco switch layer3 and cisco ASA for GNS3 • How to add cisco switc...
How to configure ASA firewall step by step • How to configure ASA f...
Fortigate SD WAN link monitor • fortigate SD WAN link ...
Fortigate firewall SD-WAN setup • Fortigate Firewall SD WAN
Fortigate firewall basic configuration • Fortigate Firewall bas...
How to configure port security on CISCO Switch • How to configure port ...
What is Management VLAN on CISCO Switch • What is Management VLA...
How to configure inter VLAN routing VTP and DHCP Server on Cisco Switch Layer3 • How to configure inter...
How to configure inter VLAN routing and DHCP server on cisco router • How to configure inter...
How to configure WAN failover on cisco router • How to configure WAN f...
How to configure Access List SSH Remote in Cisco Router • How to configure Acces...
FortiGate mid-range next-generation firewalls (NGFWs) provide high performance, multi-layered advanced security, and better visibility to protect against cyber-attacks while reducing complexity.
FortiGate firewalls are purpose-built with security processers to enable the industry’s best threat protection and performance for SSL-encrypted traffic.
VLAN: Virtual Local Area Network reduce the broadcast domain and separate the LAN into different subnet.
VLANs can be used to partition a local network into several distinctive segments, for instance:
-Production
-Server Farm
-Voice over IP
-Network management
-Storage area network (SAN)
-Guest Internet access
-Demilitarized zone (DMZ)
A sub interface is a virtual interface created by dividing one physical interface into multiple logical interfaces.
A sub-interface in a Cisco Router uses the parent physical interface for sending and receiving data.
We use Sub interfaces for inter VLAN traffic routing by using a Router-on-a-Stick configuration
DHCP Server: provide IP address to the client for each VLAN.
A DHCP Server is a network server that automatically provides and assigns IP addresses, default gateways and other network parameters to client devices.
It relies on the standard protocol known as Dynamic Host Configuration Protocol or DHCP to respond to broadcast queries by clients.
If you like my video please like, comment, subscribe #TanKirivann and turn on notification for more videos.
sorry all my friends for the load bg music in this video. I will improve for next videos😀👍
Thank you very much by taking my comment in positive way. I ll pray u ll get more success.
@@xmasiddiqui Thank you very much bro. Happy new year and I wish you all the best too🙏💖
Hello Tan, this video was a wonderful refresher for me. Highly recommend this for engineers using fortigate for the first time. Well done. You earned another subscriber. Good job😊👍
Hi bro, thank you very much for your time attention. I will keep improving more videos to share. anyway sorry for the load bg music, cheers
Nice and well presented tutorial. God used your tutorial to help me resolve my issues
thank you bro for watching, pls let me know if u have any issue.😊
Appreciate this. Please lower your music volume so focus remains on your comments.
hi bro thank you for your support. I will improve with the next video
Happy to hear in English.. Just decrease the bg music because your voice is low and music loud. 👂
hi my friend happy to see you here, thank you for your feedback. i will improve with the next video❤
Thank You TAN Kirivann i wants more videos like this
Thank you very much bro, I try my best to upload more topic and I hope to see you with my next videos.😍
Thank you sir for making video in English
Hi bro, thank you for your support.
merci beaucoup , vous m'avez énormément aider . chapeau bas
merci beaucoup d'avoir regardé ma vidéo. si vous rencontrez un problème avec votre environnement réseau, vous pouvez poster ici. à votre santé
@@tankirivann merci beaucoup ; je vais pas hésiter.
Merci
@@lydiaidri2363 Merci
The video is great and thank you, you did a great job! But man the music is very annoying. Please do not put any music over your videos. Thank you
Hi bro thank you very much for your support🙏🙏🙏 and sorry for the load music, I will improve for the next videos
its a very good video but the background music killed the entire learning experience!
hi bro sorry for my mistake on BG music and than you very much for your comment, I will improve with my next videos.🙏🙏🙏💖
Great video thank you Tan
Hi bro, thank you very much for watching my video🙏💖
Thank you for this man! Gave it a thumbs up
Thank you bro for watching my VDO, and big support thumbs up.
Thanks and appreciated for ur sharing bong
thank you for your support bro
Great Videos
Thank you🥰
thanks for sharing TAN
Thank you very much bro, happy merry christmas🌲
when i start the router or the switch i have erreur for the license what is the prb plz ?( i have the image for the description)
Hi sis thanks for your feedback, for Cisco iou images you need to apply license before you can start it. Pls follow this video How to add Cisco L3 License in gns3
ruclips.net/video/rCqNAK3i64I/видео.html
Good job Tan, Please make a video if two routes are static,1st mpls and 2nd is for Vpn of the same route, how the other up if the 1st down automatically, i am using fortigate 40f, with 7.2 forti os
hi bro, sorry for late reply. am trying to understand your network topology so we can test how it work. pls provide more information about your network if possible. thank you
i created vlan 20 but in zone section it does not show the vlan 20 can i know why?
Hi bro thank you very much for your comment. How many vlan that you creat? can you see/select the other vlan?
useful information. Thanks for sharing !!!
Thank you bro for watching my video 😊
Why can’t the Vlan ping their default gateway?? Is there any reason??
hi bro, thank you very much for your good question. I think it is a default fortigate firewall design not allow to ping Gateway, pls correct me if I am wrong.🙏🙏🙏
Can you show the trunk command in the layer 3 cisoc switch to route through the trunk ( 17) to the fortigate
Hi bro, am sorry for late reply. for trunk port command in cisco L3 "int e0/0
switchport trunk encapsulation dot1q
switchport mode trunk" I hope I answer to your question. If you still have any issue pls keep posting. thank you very much for watching my video.
Please make video like add one core Switch and configure more than one vlan on switch and configure on Fortigate.
Hi bro thank you very much for your request, I already have one video related to this topic. pls check here Fortigate Firewall Integrate with CISCO Switch ruclips.net/video/p73pnRNxcn8/видео.html
Please turn off music when do tutorial video as suggestion. It is better for focus.
Hi bro, thank you very much for your advice. I will improve for the next video, see you.
why i cant access the Fortigate interface?
Hi bro, sorry for late reply, I am busy at my work. you need to configure allow http access on your WAN interface and this is another video for bridging the internet access with you local PC ruclips.net/video/XvhA3DNxQ_I/видео.html
very good knowledge
thank you bro for your support, pls share if you have any good idea
hey dude...let me ask you something: Is it possible to change a VLAN macaddress that points into an agregated Lan?
Hi bro sorry for late reply, mac address cannot change as it is unique assing for each devices. pls correct me if I am wrong bro because I am not an expert so my knowledge also have limit. thank you🙏🙏🙏
hi thanks for this video. much appreciated.
hi thank u for watching my vdo. let learn together
@@tankirivann can u also post a video on how you setup your virtual lab.
@@acidcool I already posted in the list pls check it. if you have any issue pls let me know. cheers
If no music is better, thank you very much
thank you for your support, I will improve next video
Perfect job 😍
thank you for your support❤
Thank you so much
hi bro, thank you very much for your support.
Mate, please dont use high volume musics.
thank you for your feedback, I will improve on next videos.
Amazing contents
Thank you very much bro
Cool brother from HTV
hi HTV guys, how are you there? I hope we meet u guys after COVID 19
@@tankirivann Not bad Brother. Now we are using Fortigate Firewall Thanks for sharing keep it up brother and Hope to see you too.
@@AhHear-IT Appreciate that. u guys can do it. cheers
hello sir
The music is sometime very higth ;)
hi bro, am really sorry for load bg music. I will improve on my next video, thank you.
Thank you
thanks bro😊
អរគុណបងដែលបានចែករំលែក។បើអាចបងធ្វើvdoជា version englishផងនឹងversion khmer ផងកាន់តែល្អបងសូមអរគុនម្ដងទៀត
អរគុណច្រើនប្អូនសំរាប់ការគាំទ្រក៏ដូចជាមតិយោបល់ បងឆ្លៀតពេលទំនេរពីការងារធ្វើវីដេអូនេះឡើងសង្ឃឹមថាអាចជួយជាគន្លឹះខ្លះៗដល់អ្នកដែលចង់ស្វែងយល់ពីជំនាញNetwork។ ហើយបងនិយាយជាភាសាអង់គ្លេសដើម្បីវឹកហាត់ខ្លួនឯងផងដែរ ហើយវាជាភាសាសកលចឹងហើយភាគច្រើនគ្នាយើងអាចយល់បាន និយាយរួមសំរាប់ការងារជំនាញនិងភាសាអង់គ្លេសសំខាន់សំរាប់យើង
download your fortigate kvm but cannot see the WIFI controller option as seen on your video, please advise, new sub here :) thank you
Hi bro thank you for your support. To be honest I never test WIFI controller so I am not sure that we can use in kvm or not. Let me take sometimes to check on it, thanks.
Thank you!
you're welcome, thank you for watching.
Is this the same meaning as Router on a stick?
hi bro, yes you are correct. thank you very much for your support🙏😍
Can we check who has changed or modify the existing policy in fortigate?
Thank you for your good question, we can configure Email Alert setting enable configuration change then Fortigate will send Email to you when someone modify everything in your firewall. I hope you get my point and see you next time
Hi brother, Thanks for sharing this video.
If I create different vlan's on Fortinet firewall, different vlan create on switches
after that the PC connected with switches get the IP from the different vlan's, Please tell me whats I can do.
My Topology is
Cloud
Fortinet FW(Vlan1-3)
SW1(vlan1)----SW2(vlan2)---SW3(vlan3)
PC1(vlan1) PC2(vlan2) PC3(vlan3)
Hi bro thank you for your support. your topology is called legacy router so you need to have 3 different up link to each vlan and it is access vlan port. Pls correct me if i am wrong. I hope I answer to your question.
Unfortunately I closed server summary tab, how to get back this tab
hi bro, thank you for watching my video. actually am away from home for 2days will check for you ASAP.
hi bro, u go to the View tap ===> Docks ===> tick on Servers Summary. I hope u can find it cheers😊
Tutorial is good but there was no need of inserting that background sound.
Hi bro thank you for your support, am sorry for the BG music and I will improve next video.
Hi bro, I try to connect my gns3 with guns vm to the internet but it's not working
Hi bro, if you want internet access through gns vm, you need to add another network bridge adapter on gns3 vm and in your lab choose cloud then connect to that network adapter. I hope u can get my point.
Can you load image
Hi bro, thank you for your support. pls see the link in description.
What application your using?
thank you bro for your question, for the lab we use gns3 and VMware. for video edit we use Filmora.
18:30 Static route and policy
Hi bro, thank you for watching my video. yes we do static route here it means that the default route for our firewall access to Internet. Policy role is for client, we allow the client access to the Internet through our firewall. I hope you get these point, see u in my next video.
Please leave the music away.
Hi bro, am really sorry for the music and I will improve with my next video. thank you very much for your support.
i followed your config but vlan routing can not ping to each other l also allowed ping all interface vlan but still can not ping,
hi thank you for watching, am happy to hear from u because now u can use gns3 for LAB practice. so can client ping to its gateway?
@@tankirivann now i did it, Thanks Sir,
@@hosang9685 u can do it, cheers
សុំជាភាសាខ្មែរលោកគ្រូ
បាទអរគុណ ខ្ញុំហាត់រៀននិយាយភាសាអង់គ្លេស
That BGM is very loud
Hi bro sorry for my mistake on this🙏
I put all VLANs inside a Zone, but still not have VLAN inter connect
hi bro thank you for your sharing. pls disable "block trafiice zone" if u want to do inter vlan routing. try to ping your gateway from client? can client in the same vlan ping each other? pls check on your switch configuration, trunk port, access port for vlan, make sure your switch have those vlan? i hope you can do it, if possible try to watch my video carefully. thanks again
@@tankirivann the same VLAN can ping, but different VLAN cannot, I disabled block traffic zone already, but still not work. thank you very much for your replying
@@tankirivann Thank you very much, I see it work now, not change anything in configuration, I turn it of and turn on
@@hoangtruong7166 thank you very much for your update, now u can do it. cheers
music is way too loud
Hi bro thank you for your support. sorry for load music I will improve next video
pls stop the music , i wan to listen clearly :(
hi bro sorry load music, maybe this video can help you as well ruclips.net/video/wO5DVEELWL0/видео.html
sorry could not hang in with this tutorial....that music...drove me off
sorry bro for load music, anyway thank you for watching my video
The music very noisily
Thank you for watching, will turn the volume down a bit more next time
The clicking sound of the mouse is very annoying...🤦♂️
thank you for watching, sorry for the sound. i will improve next time😊
@@tankirivann Thank you Tan 👍
@@lincolnjordaan3766 u welcome
អរគុណច្រើនណាស់បងសម្រាប់ការចែករំលែក
អរគុណច្រើនសម្រាប់ការគាំទ្រ ប្អូនក៏អាចចែករំលែកបទពិសោធបានដូចគ្នា
Too much noise
sorry for load background music
Can you speak khmer
Thank you bro for watching. Actually most of our friend is from all around the world that why I decide to make the video in English version. let me know if you need any help.
Because some of the people don't know about the english well and they also want to learn it from u
@@ienvey5239 Thank you for your feedback bro. I think you can learn both at the same time English and Technical skill. because as u know English is very important for us to research more document and communication with other foreign people.
why adding 3rd class music in background
thank you for watching, the music don't make u feel bored. will decrease the volume next time
TURN THAT FUCKING music off, I cant hear you bruh
Hi bro, sorry for BG music with this video. I will improve for the next video, thank you for your comment. 🙏🙏🙏😊