Send netdisco-users mailing list submissions to
netdisco-users@lists.sourceforge.net
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/netdisco-users
or, via email, send a message with subject or body 'help' to
netdisco-users-requ...@lists.sourceforge.net
You can reach the person managing the list at
netdisco-users-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of netdisco-users digest..."
Today's Topics:
1. FortiGate Firewall with Forti-Link (Juan Romero)
2. Re: FortiGate Firewall with Forti-Link (Michael Butash)
3. Re: FortiGate Firewall with Forti-Link (Oliver Gorwits)
--- Begin Message ---
Hi guys:
Running discoveries against a FortiGate FW (FortiOS 7.2) with FortiSwitches
connected using F-Link only provides info about the FortiGate but nothing about
the switches.
1st time I'm targeting a FGate with F-Link so I'm not sure if this is the
expected result or if there's something I'm missing so that NetDisco can also
grab switches info.
Any help highly appreciated
Thanks!
Juan.
--- End Message ---
--- Begin Message ---
I had this problem myself, I used to have a 100D at my house and a
224D-FPOE switch, and the Gate simply didn't enumerate the switch via snmp
in any usable way that I found to end up blind to it there. I suspect you
need to set up the switch separately still to be IP reachable, which is...
weird since using the 169 addresses and such as it does. I never did
figure it out, sorta gave up as I had far more weirdness with how the
fortilink Switch/Wifi L2 extensions worked than I liked after moving to it
in the house (like static proxy arp entries needed for things, ssdp ttl
propagation issues, etc), monitoring it with netdisco/librenms per my norm
was the least of my issues.
Now I still use a fortiswitch (upgraded to a 524D-FPOE), but use opnsense
as the firewall with it and my life is much better, and gives up info
normally straight to the L3 IP. At least to librenms, not sure I've
plugged netdisco into it since moving to that, but it's otherwise got most
librenms gets out of it normally.
-mb
On Tue, Oct 3, 2023 at 1:25 PM Juan Romero <jrom...@auroranetworks.net>
wrote:
> Hi guys:
>
>
>
> Running discoveries against a FortiGate FW (FortiOS 7.2) with
> FortiSwitches connected using F-Link only provides info about the FortiGate
> but nothing about the switches.
>
>
>
> 1st time I'm targeting a FGate with F-Link so I'm not sure if this is the
> expected result or if there's something I'm missing so that NetDisco can
> also grab switches info.
>
> Any help highly appreciated
>
> Thanks!
>
> Juan.
> _______________________________________________
> Netdisco mailing list
> netdisco-users@lists.sourceforge.net
> https://sourceforge.net/p/netdisco/mailman/netdisco-users/
--- End Message ---
--- Begin Message ---
Hi Juan,
Is this anything like fabric extenders (FEX) on Cisco? We had some
difficulty with them in the past as the data can appear in nonstandard ways.
I'd open a ticket with your support partner if you have one (simply asking
in a generic way how to SNMP get a list of interfaces and MAC addresses
attached on the FortiSwitches).
A brute force way to investigate would be to run an snmpwalk from .1 on the
device and look for a known MAC address or interface description on a
FortiSwitch.
Alternatively if the information is available at the command-line we can do
SSH collection ... at the moment only ARP table supported but in theory no
reason Netdisco could not do that for additional interfaces and also MAC
address and VLAN info.
Or if you can get the FortiSwitches to be active with their own management
IP then of course direct gather might work.
Good luck!
regards
Oliver.
On Tue, 3 Oct 2023 at 21:25, Juan Romero <jrom...@auroranetworks.net> wrote:
> Hi guys:
>
>
>
> Running discoveries against a FortiGate FW (FortiOS 7.2) with
> FortiSwitches connected using F-Link only provides info about the FortiGate
> but nothing about the switches.
>
>
>
> 1st time I'm targeting a FGate with F-Link so I'm not sure if this is the
> expected result or if there's something I'm missing so that NetDisco can
> also grab switches info.
>
> Any help highly appreciated
>
> Thanks!
>
> Juan.
> _______________________________________________
> Netdisco mailing list
> netdisco-users@lists.sourceforge.net
> https://sourceforge.net/p/netdisco/mailman/netdisco-users/
--- End Message ---
_______________________________________________
Netdisco mailing list - Digest Mode
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
