Re: Communication problem between Cisco 8500-12x and Fortigate - Cisco Community

350

Views

2

Helpful

5

Replies

Hello,

I have a communication problem between Cisco 8500-12X and Fortigate Firewall.

The problem is that both devices suddenly stopped communicating with each other (they do not respond to ICMP - on FW I allowed ICMP packets) Of course, no other traffic goes through either.
Interestingly, the MAC addresses are refreshing.
On the router I have implemented L2 on bridge-domain.

Topology:
Fortigate (Public IP) ---- (int BDI) Cisco 8500-12X -- ISP

On the router I have recommended software: 17.09.04a

5 Replies 5

Do you diagnose on Fortigate side ? I mean, diagnose sniffer packet in CLI to see if icmp echo-request from C8500 arrived on that FortiGate ?

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

So c8500 use BDI and or L3 interface BVI,

Thr FPR use pppoe?

That correct

If yes then check your routing table in fpr

MHM

To make sure what device having this issue-

try below

PC ---- (int BDI) Cisco 8500-12X -- ISP ( does the PC able to work as expected )

from there you know where to start troubleshooting

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Thank you for all your ideas, but the problem lay elsewhere
It turned out that two Fortigate clusters present themselves with the same MAC address.

is this HA ? then try turn off one of the node and check ?

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community

Review Cisco Networking for a $25 gift card