At its core, IEEE 802.1X is a network layer... Full Story
By Manny Fernandez
May 27, 2020
Separate VRF for Out-of-Band Management in FortiOS
I am currently running FortiOS 6.4 on this FortiGate. The use case is to have an out-of-band interface that points to a separate routing table or in this case, a VRF which stands for Virtual Routing and Forwarding. In my scenario I will create one interface port22 as the out-of-band interface. I configured a fake IP address and routed to a fake network just for this article.
Here you can see the standard interface configuration. The only difference is the addition of the set vrf 1 statement.
Note: The default VRF is 0.
Essentially anything routed across via this interface, will be part of VRF1.
Here we can see entry 5 where I am creating a static route to 10.200.200.0/24 with a gateway of 1.1.1.2 and the device is port22 (This route is now part of VRF1).
When we look at the routing table, we can see the two routes.
by issuing the get route info routing-table all you can see that there is a route to 10.200.200.0/24 via 1.1.1.2 under the VRF=1 section.
Note: See the default routing table which is VRF=0.
Hope this helps.
Recent posts
-
-
In case you did not see the previous FortiNAC... Full Story
-
This is our 5th session where we are going... Full Story
-
Now that we have Wireshark installed and somewhat configured,... Full Story
-
The Philosophy of Packet Analysis Troubleshooting isn't about looking... Full Story