05-03-2024 04:45 PM - edited 05-03-2024 06:21 PM
Hello,
I have the architecture outlined below, and communication needs to be established between the machines on the network 10.1.2.0/24 via FW1 (Palo Alto) and FW2 (fortigate). Could you please offer a solution to accomplish this?
Thank you.
05-06-2024 01:43 AM
On the Palo side you have the option of using a VWire (2 interfaces connected as a virtual wire), or setting 2 interfaces to Layer2 mode and putting them in the same vlan
in both cases give each interface it's own zone and then create 2 security rules
zone a to zone b
zone b to zone a
and it will work like a charm
on the forti side you probably need black magic (sorry, you'll need to go ask fortinet)
05-06-2024 01:43 AM
On the Palo side you have the option of using a VWire (2 interfaces connected as a virtual wire), or setting 2 interfaces to Layer2 mode and putting them in the same vlan
in both cases give each interface it's own zone and then create 2 security rules
zone a to zone b
zone b to zone a
and it will work like a charm
on the forti side you probably need black magic (sorry, you'll need to go ask fortinet)
05-07-2024 11:37 AM
This method is similar on the Fortigate. You can assign layer 2 vlans to ports on the forti.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
