I have picked up a Fortiswitch 124E switch and Fortigate 60E firewall to put together a lab environment. We are a 100% Cisco shop so this is to look at using different hardware at our smaller locations, but I have NO prior Fortinet experience.
THE SETUP: A cable modem is connected to the WAN port of the Fortigate, and port 1 is then connected to the Fortiswitch (a copper SFP in port 25). There are 5-6 VLAN's setup on the Fortiswitch with SVI's. Layer 3 routing is used to connect the Fortiswitch to the Fortigate via a small stub/transport network. They are setup as separate devices; the switch is NOT FortiManaged. Everything is communicating properly between VLAN's and to the Internet.
THE PROBLEM: Throughput between the VLAN's is abysmal! I am getting ~1.5 Mbps on both the Gig ports and a 50Mbps WAN connection. I have pretty much ruled out the Fortigate, as connecting directly to the inside interface achieves the expected speedtest results. While there is connectivity between VLAN's they are very slow. Internet connectivity is slow as well.
CHECKS MADE:
- Verified cables are good.
- Tried using a copper port instead of the SFP.
- Verified speed/duplex settings.
- Disabled LLDP, logging, any other "features" I could find.
- Upgraded switch firmware to 6.2.5
- Gone through the entire config looking for policies but I haven't been able to find any.
HELP! I am at a loss and with being new to Fortinet, not even sure where to begin. There are no obvious errors, alarms, and anything that I can find wrong. Everything seems to be working between VLAN's, just slow. I haven't been able to find any "cookbooks" or similar problems on the web. Any suggestions of what to check or help is appreciated!
No comments:
Post a Comment