Business Community > Gateways > ER7412-M2 interconnected to Fortigate
< Gateways

ER7412-M2 interconnected to Fortigate

ER7412-M2 interconnected to Fortigate

ER7412-M2 interconnected to Fortigate
ER7412-M2 interconnected to Fortigate
Tuesday - last edited Wednesday
Tags: #NAT #Firewall #ACL #Routing
Model: ER7412-M2  
Hardware Version: V1
Firmware Version:

My setup is I have fortigate firewall interconnected to ER7412-M2 (LAN of fortiate to WAN of ER7412)

I configured routing on both sides and firewall policy on fortigate to have communication to local subnets of ER7412-m2 and fortigate firewall.

Now i can communicate from local subnets of ER7412-M2 to local subnets of Fortigate but vice versa I can't communicate local subnets of ER7412-M2 from fortigate local subnets, I can only ping the  LAN gateway in ER7412-M2 but the local device is not.

I think it has somethin to do in NAT of ER7412 but there is no option to disable it.

 

How can I possibly fix this issue. Thank you!

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:ER7412-M2 interconnected to Fortigate-Solution
Tuesday - last edited Wednesday

Hi @Ataris, it might be easier just to connect the Fortigate firewall to a LAN port on the ER7412-M2 instead of it's WAN port.

Recommended Solution
  2  
  2  
#2
Options
7 Reply
Re:ER7412-M2 interconnected to Fortigate-Solution
Tuesday - last edited Wednesday

Hi @Ataris, it might be easier just to connect the Fortigate firewall to a LAN port on the ER7412-M2 instead of it's WAN port.

Recommended Solution
  2  
  2  
#2
Options
Re:ER7412-M2 interconnected to Fortigate
Tuesday

  @D-C  Oh yes. I never thought of that. This will make things easier since the firewall will do everything. I will try that. Thanks

  0  
  0  
#3
Options
Re:ER7412-M2 interconnected to Fortigate
Thursday

  @Ataris 

The latest firmware V1.1.0 for ER7412-M2 V1 adds a “Disable NAT” option—you can use this feature to meet your requirement.

How to Disable NAT on Omada Gateway

Wishing you a joyful life and smooth internet! Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates Omada US Enterprise Beta Program Launch
  0  
  0  
#4
Options
Re:ER7412-M2 interconnected to Fortigate
Thursday

  @Ethan-TP Actually this is my setup current setup after update same problem. still i cant ping host at er7412-m2. or maybe acl config? previously i cant ping er7412-m2 Lan gateway when i configured ACL rule on er7412-m2

Policy = Allow

Service type = All

Direction = wan in

Source = IP Group Any/Fortigate LAN Subnets

Destination = ME 

 

This solved me to ping LAN Subnet of ER7412-M2

 

Then i Tried to Add additional rule

 

Policy = Allow

Service type = All

Direction = wan in

Source = IP Group Any/Fortigate LAN Subnets

Destination = IP Group Any/ER7412-M2 LAN Subnets

 

Policy = Allow

Service type = All

Direction = wan in

Source = IP Group Any/ER7412-M2 LAN Subnets

Destination =  IP Group Any/Fortigate LAN Subnets


 

  0  
  0  
#5
Options
Re:ER7412-M2 interconnected to Fortigate
Yesterday

  @Ataris 

Perhaps you should configure it exactly as described in the setup guide I provided.

Wishing you a joyful life and smooth internet! Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates Omada US Enterprise Beta Program Launch
  0  
  0  
#6
Options
Re:ER7412-M2 interconnected to Fortigate
Yesterday
Thanks sir. I will try and follow your guide
  0  
  0  
#7
Options
Re:ER7412-M2 interconnected to Fortigate
Yesterday

  @Ethan-TP  This  is from fortigate LAN subnet perspective.  LAN of ER412 no response but vice versa ping is ok.

 

  1  
  1  
#8
Options

Information

Helpful: 0

Views: 118

Replies: 7

Tags

NAT Firewall ACL Routing
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.