Aruba & ProVision-based
1748178 Members
4179 Online
108758 Solutions
New Discussion

Re: Configure port forwarding in HPE Procurve Switch 8206zl

 
SOLVED
Go to solution
Omarrsd
Advisor

Configure port forwarding in HPE Procurve Switch 8206zl

HI Dear , 

 

Please help to Configure port forwarding in HP procurve Switch 8206zl .

Senario is :  I have wifi users vlans and want to forward to a port where firewall fortigate is connected. what are the command i have to use. 

 

Your help will be highly appericated 

 

6 REPLIES 6
Vince-Whirlwind
Honored Contributor

Re: Configure port forwarding in HPE Procurve Switch 8206zl

To do port forwarding you would need NAT, which the K. firmware didn't use to support (maybe it does now?).

I can't see NAT mentioned in the latest version of the user manual so I don't think you can do port forwarding.

However, looking at your scenario, I wonder if port forwarding is really what you want?

Maybe you just need routing?

Where are the user devices' default gateways? On the 8200? If so, just put a static route on the 8200 so that packets for all destinations are sent to the IP address on the Fortigate interface.

Omarrsd
Advisor

Re: Configure port forwarding in HPE Procurve Switch 8206zl

Dear I feel , I used the worng word " Port Forwarding " I think.  I need Port Base Routing

I have Lan Users and Wifi Users.  And default route  in core switch is to websence ( content filtring Appliance ). 

0.0.0.0  0.0.0.0  172.16.50.10 (websence ) default Route

there is Fortigate firewall also which is connected to core switch. And i want to send all wifi users internet traffic to Fortigate. what should be ideal setup for this? 

 

 

 

 

16again
Respected Contributor

Re: Configure port forwarding in HPE Procurve Switch 8206zl

If the WiFi users need a different default gateway, why not just create additional L3 interface on the fortigate in the WiFi subnet?
This way, there's no need to do routing for WiFi VLAN on the switch

Omarrsd
Advisor

Re: Configure port forwarding in HPE Procurve Switch 8206zl

Dear , is it possible for you to explain, how it will work.? It will be higly appriciated . 

wireless wlans are 

10.50.1.0 /24

10.50.2.0/24

10.51.1.0/24

10.52.2.0/24

 

16again
Respected Contributor
Solution

Re: Configure port forwarding in HPE Procurve Switch 8206zl

I assumed you just had single Wireless guest VLAN that required different gateway.

PolicyBasedRouting is the way to go (I always use it as last resort)
Use config below  per vlan as starting point:
class ipv4 CL_WIFI1
  match ip 10.50.1.0/24
policy pbr PBR_WIFI1
  class ipv4 CL_WIFI1
    action ip next-hop <FortiGateIP> 
vlan wifi1
  service-policy PBR_WIFI1 in

 
Omarrsd
Advisor

Re: Configure port forwarding in HPE Procurve Switch 8206zl

Thx Dear !