From 2c139bce74f28c121dab5447bf5b6b0a0f9767bb Mon Sep 17 00:00:00 2001 From: John Poland Date: Mon, 24 Nov 2025 17:28:36 -0500 Subject: [PATCH] fortigate Mon Nov 24 05:28:36 PM EST 2025 --- configs/fortigate/vdom_scsd/firewall.cfg | 6 +++++- configs/fortigate/vdom_scsd/router.cfg | 4 ++++ 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/configs/fortigate/vdom_scsd/firewall.cfg b/configs/fortigate/vdom_scsd/firewall.cfg index 910d40d..0aa524d 100644 --- a/configs/fortigate/vdom_scsd/firewall.cfg +++ b/configs/fortigate/vdom_scsd/firewall.cfg @@ -2894,6 +2894,10 @@ config firewall address edit "RAPpublic" set subnet 24.105.188.54 255.255.255.255 next + edit "RAP-FW-Inside" + set allow-routing enable + set subnet 192.168.167.0 255.255.255.0 + next end config firewall multicast-address edit "all_hosts" @@ -6252,7 +6256,7 @@ config firewall policy set dstintf "RAP" set action accept set srcaddr "Server_40" "Server_48" "21JumpSt" "Sys-Net-Admins" - set dstaddr "RAP-Users" "RAP-MGMT" + set dstaddr "RAP-Users" "RAP-MGMT" "RAP-FW-Inside" set schedule "always" set service "ALL" set utm-status enable diff --git a/configs/fortigate/vdom_scsd/router.cfg b/configs/fortigate/vdom_scsd/router.cfg index b41035b..6ba8dab 100644 --- a/configs/fortigate/vdom_scsd/router.cfg +++ b/configs/fortigate/vdom_scsd/router.cfg @@ -234,6 +234,10 @@ config router static set device "RAP" set comment "RAP Users" next + edit 38 + set dst 192.168.167.0 255.255.255.0 + set device "RAP" + next end config router ospf config redistribute "connected"