Pular para conteúdo principal
Iniciar uma nova conversa

Não Resolvido

Esta postagem tem mais de 5 anos

W

Wendell_ITLine

1 Mensagem

1441

14 de janeiro de 2019 03:00

Internet para as Vlans do N4032F através do Fortigate

Bom dia !

Já não tenho mais cabelos, estou com o seguinte cenário, tenho 2 switches cores N4032F em stack e abaixo deles 7 switches N1548, cada N1548 está com a porta de uplink numa porta do N4032F, configurei cada porta do N4032F onde os N1548 vão se conectar com um range de IP em DHCP, sendo que cada porta é uma Vlan diferente, tipo porta 5 - vlan5 - DHCP com range 192.168.56.0/24, porta 6 - vlan6 - DHCP com range 192.168.105.0/24 e assim por diante.

Todas as vlans se comunicam de qualquer switch para qualquer switch, de qualquer vlan para qualquer vlan, até aí show !

A porta 3 do N4032F eu conectei o Fortigate e foram configuradas as rotas no fortigate, porém ela só funciona na Vlan 2 que é a mesma dos servidores e do gateway do Fortigate, ou seja, a Vlan 2 que tem as portas 1,2,3,4 com range de IP 192.168.110.0/24, na porta 1, temos um servidor, com IP 192.168.110.2 e na porta 2 o outro servidor com IP 192.168.110.3, na porta 3 está conectado o Fortigate que está com IP 192.168.110.10.

Somente os dois servidores que estão na mesma vlan recebem o internet, somente os dois servidores conseguem dar o Ping no 192.168.110.10, nenhuma outra máquina da rede, consegue chegar no 110.10, se eu configuro uma máquina com o mesmo IP, e conecto na mesma porta do Fortigate, ela comunica para qualquer lugar da rede e vice-versa. 

Tirei o Fortigate da equação e coloquei um roteador simples, doméstico configurado com o IP 192.168.110.10 que é o IP do Fortigate e a mesma coisa acontece, não pinga e não distribui internet, pergunto, onde está o erro ?

As Vlans se comunicam, se eu coloco uma máquina com o mesmo IP, tudo flui numa boa, se eu coloco um firewall, um roteador ou um AP qualquer, a coisa não acontece, alguém tem uma idéia ? Estou ficando sem tempo já !

Abaixo segue a configuração do Core N4032F.

!Current Configuration:
!Software Capability "Stack Limit = 12, VLAN Limit = 4093"
!Image File "N4000v6.5.2.9"
!System Description "Dell Networking N4032F, 6.5.2.9, Linux 3.7.10-c230a834"
!System Software Version 6.5.2.9
!Cut-through mode is configured as disabled
!
configure
vlan 2-3,5-12,30
exit
vlan 2
name "SERVIDORES"
exit
vlan 3
name "internet"
exit
vlan 5
name "KIDS"
vlan association subnet 192.168.56.0 255.255.255.0
exit
vlan 6
name "CASA 105"
vlan association subnet 192.168.105.0 255.255.255.0
exit
vlan 7
name "CASA 129"
vlan association subnet 192.168.129.0 255.255.255.0
exit
vlan 8
name "CASA CMN"
vlan association subnet 192.168.158.0 255.255.255.0
exit
vlan 9
name "CASA 124-136"
vlan association subnet 192.168.124.0 255.255.255.0
exit
vlan 10
name "CASA 100"
vlan association subnet 192.168.100.0 255.255.255.0
exit
vlan 11
name "RESULTADOS"
vlan association subnet 192.168.57.0 255.255.255.0
exit
vlan 12
name "ADM"
exit
vlan 30
name "WIRELESS"
exit
snmp-server location "DATACENTER"
snmp-server contact "RS"
hostname "CTC1"
slot 1/0 3 ! Dell Networking N4032F
slot 1/1 7 ! Dell SFP+ Card
slot 2/0 3 ! Dell Networking N4032F
slot 2/1 7 ! Dell SFP+ Card
stack
member 1 2 ! N4032F
member 2 2 ! N4032F
exit
interface out-of-band
ip address 192.168.2.1 255.255.255.0 192.168.2.1
exit
boot auto-copy-sw
ip routing
service dhcp
ip dhcp ping packets 4
ip dhcp excluded-address 192.168.2.2 192.168.2.15
ip dhcp pool "Casa105"
lease 7 0 0
default-router 192.168.105.1
network 192.168.105.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "KIDS"
lease 7 0 0
default-router 192.168.56.1
network 192.168.56.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "CASA129"
lease 7 0 0
default-router 192.168.129.1
network 192.168.129.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "CASACMN"
lease 7 0 0
default-router 192.168.158.1
network 192.168.158.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "CASA124-136"
lease 7 0 0
default-router 192.168.124.1
network 192.168.124.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "CASA100"
lease 7 0 0
default-router 192.168.100.1
network 192.168.100.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "RESULTADOS"
lease 7 0 0
default-router 192.168.57.1
network 192.168.57.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "Servidores"
lease 7 0 0
default-router 192.168.110.1
network 192.168.110.0 255.255.255.0
netbios-node-type b-node
exit
ip dhcp pool "ADM"
lease 7 0 0
default-router 192.168.58.1
network 192.168.58.0 255.255.255.0
netbios-node-type b-node
exit
interface vlan 1
exit
interface vlan 2
ip address 192.168.110.1 255.255.255.0
exit
interface vlan 5
ip address 192.168.56.1 255.255.255.0
exit
interface vlan 6
ip address 192.168.105.1 255.255.255.0
exit
interface vlan 7
ip address 192.168.129.1 255.255.255.0
exit
interface vlan 8
ip address 192.168.158.1 255.255.255.0
exit
interface vlan 9
ip address 192.168.124.1 255.255.255.0
exit
interface vlan 10
ip address 192.168.100.1 255.255.255.0
exit
interface vlan 11
ip address 192.168.57.1 255.255.255.0
exit
interface vlan 12
ip address 192.168.58.1 255.255.255.0
exit
interface vlan 30
ip address dhcp
exit
ip route 0.0.0.0 0.0.0.0 192.168.110.10
username "admin" password 2446d54c2e68d221db9cff653b01a0eb privilege 15 encrypted
line console
exec-timeout 30
exit
line telnet
exec-timeout 30
exit
application install SupportAssist auto-restart start-on-boot
!
interface Te1/0/1
description "SERVIDOR 1"
switchport mode trunk
switchport general pvid 2
switchport general allowed vlan add 2,5-12
switchport trunk native vlan 2
exit
!
interface Te1/0/2
description "Servidor2"
switchport mode trunk
switchport general pvid 2
switchport general allowed vlan add 2
switchport access vlan 2
switchport trunk native vlan 2
exit
!
interface Te1/0/3
description "Fortigate"
switchport mode trunk
switchport general pvid 2
switchport general allowed vlan add 2,5-12,30
switchport trunk native vlan 2
exit
!
interface Te1/0/4
description "Servidor4"
switchport mode trunk
switchport trunk native vlan 2
exit
!
interface Te1/0/5
description "KIDS"
switchport mode trunk
switchport access vlan 5
switchport trunk native vlan 5
exit
!
interface Te1/0/6
description "CASA 105"
switchport mode trunk
switchport general pvid 6
switchport access vlan 6
switchport trunk native vlan 6
exit
!
interface Te1/0/7
description "Casa 129"
switchport mode trunk
switchport access vlan 7
switchport trunk native vlan 7
exit
!
interface Te1/0/8
description "CASA CMN"
switchport mode trunk
switchport access vlan 8
switchport trunk native vlan 8
exit
!
interface Te1/0/9
description "CASA 124-136"
switchport mode trunk
switchport access vlan 9
switchport trunk native vlan 9
exit
!
interface Te1/0/10
description "CASA 100"
switchport mode trunk
switchport access vlan 10
switchport trunk native vlan 10
exit
!
interface Te1/0/11
description "RESULTADOS"
switchport mode trunk
switchport access vlan 11
switchport trunk native vlan 11
exit
!
interface Te1/0/12
description "ADM"
switchport mode trunk
switchport access vlan 12
switchport trunk native vlan 12
exit
!
interface Te1/0/13
speed auto
description "INTERNET"
exit
!
interface Te1/0/23
description "UpCore"
switchport mode trunk
exit
!
interface Te1/0/24
description "UpCore"
switchport mode trunk
exit
!
interface Te1/1/1
shutdown
description "teste"
switchport mode general
switchport general pvid 2
switchport trunk native vlan 2
exit
!
interface Te1/1/2
description "Stack"
exit
!
interface Te1/1/3
description "Stack"
exit
!
interface Te1/1/4
description "Stack"
exit
!
interface Te2/0/1
switchport mode trunk
switchport access vlan 2
switchport trunk native vlan 2
exit
!
interface Te2/0/2
switchport mode trunk
switchport access vlan 2
switchport trunk native vlan 2
exit
!
interface Te2/0/3
switchport mode trunk
switchport access vlan 2
switchport trunk native vlan 2
exit
!
interface Te2/0/4
switchport mode trunk
switchport access vlan 2
switchport trunk native vlan 2
exit
!
interface Te2/0/5
switchport mode trunk
switchport access vlan 5
switchport trunk native vlan 5
exit
!
interface Te2/0/6
switchport mode trunk
switchport access vlan 6
switchport trunk native vlan 6
exit
!
interface Te2/0/7
description "casas"
switchport mode trunk
switchport access vlan 7
switchport trunk native vlan 7
exit
!
interface Te2/0/8
switchport mode trunk
switchport access vlan 8
switchport trunk native vlan 8
exit
!
interface Te2/0/9
switchport mode trunk
switchport access vlan 9
switchport trunk native vlan 9
exit
!
interface Te2/0/10
switchport mode trunk
switchport access vlan 10
switchport trunk native vlan 10
exit
!
interface Te2/0/11
switchport mode trunk
switchport access vlan 11
switchport trunk native vlan 11
exit
!
interface Te2/0/12
switchport mode trunk
switchport access vlan 12
switchport trunk native vlan 12
exit
!
interface Te2/0/18
switchport general pvid 30
switchport access vlan 30
exit
!
interface Te2/0/19
switchport general pvid 30
switchport access vlan 30
exit
!
interface Te2/0/23
switchport mode trunk
exit
!
interface Te2/0/24
switchport mode trunk
exit
snmp-server engineid local 800002a203e4f004cd53a1
exit

Agradecido aos que me ajudarem.

 

Nenhuma resposta!

Was this post helpful?

Ver todos

Nenhum evento encontrado!

Top