Hello please i need help with configuration of my fortigate firewall to mikrotik router then to LAN switch ,
The initial configuration is ISP —> Mikrotick → LAN and everything works fines
on the Mikrotik the ISP Terminated with PPPoE
but as we are trying to up grade and add fortigate firewall which to be directed connect to the ISP using same PPoE , we create a firewall policy to allow the traffic from the LAN to the WAN port but the packets keep doping
i want someone to help me and getting it work please
Why bother with the Mikrotik ? Fortinet can do the PPPoE to your ISP just fine and is a much more advanced solution then any Mikrotik when it comes to security.
When i terminate the PPPoE on the Fortigate firewall on (WAN x port ) , a station that is connected directly to the Firewall(port x ) is not able to go the internet , despite the fact that i created a policy to allow any from the (Port x) to (WAN x Port ) , i also added the (WAN x Port ) to the SD-WAN Group ,
The error is saying that x.x.x.85 (the ISP Gateway (Remote address)) is unrecheable.
You should discuss the problem on the Fortigate forum but why do you expect that anything could reach Internet if PPPoE session is dropped?
Is Fortigate just a firewall or a “full router”. You should rethink your configuration.