Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hjhajj
Staff
Staff

Created on ‎01-19-2024 08:33 AM

Article Id 295117

Troubleshooting Tip: Internet Connectivity issues if DHCP is enabled on a LAN port

Description This article describes how to resolve internet connectivity issues that may occur if DHCP is enabled on a LAN port.
Scope FortiGate.
Solution

If DHCP is enabled on LAN port and "Retrieve default gateway from server" is enabled 

 

ss2.jpg

 

In this case, a default route from LAN interface to 0.0.0.0/0 would exist in the routing table which will not allow the traffic to go to the WAN interface.

 

  • Check the firewall policies to ensure there is a policy from LAN to WAN.
  • Configure Firewall policy on FortiGate.
  • Check the routes in the CLI using 'get router info routing-table all'.
  • Check a route exists from a LAN port to 0.0.0.0/0.
  • Disable 'Retrieve default gateway from server' from the LAN port.
  • Check the routing table again. The route from LAN to 0.0.0.0/0 must be deleted and the devices for the LAN network to receive internet connectivity.
333
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.