Version:

Version:


Table of Contents

New Features

Download PDF
Copy Link

Add new IPAM GUI page 7.2.1

IP address management (IPAM) details have been migrated to a centralized Network > IPAM page. The IPAM page replaces the Security Fabric > Fabric Connectors > IPAM widget and uses three tabs to display information:

  • IPAM Interfaces

  • IPAM Rules

  • IPAM Settings

Note

The IPAM page is only viewable on a FortiGate that is not in a Security Fabric or on the root FortiGate in a Security Fabric. Downstream FortiGates in a Security Fabric will display a notification to view the root FortiGate.

To enable IPAM status in the GUI:
  1. Go to Network > IPAM > IPAM Settings.

  2. Select Enabled. The Subnets field is displayed.

    Note

    IPAM status is disabled by default. After performing a factory reset, enabled IPAM status will auto-generate two subnets. These subnets can be modified and deleted.

  3. Enter the IP address and netmask in the Subnets field. Additional subnets can be added using the +.

  4. Click OK. A chart is displayed showing available space and IP address overlap between IPAM-Managed and Manually Configured IP addresses.

To enable IPAM status in the CLI:
config system ipam
    set status enable
    config pools
        edit "default-pool"
            set subnet 172.31.0.0 255.255.0.0
        next
        edit "lan-pool"
            set subnet 192.168.0.0 255.255.0.0
        next
    end
end

IPAM conflict markers

The IPAM Interfaces tab displays conflict markers when there are IP pool IP address conflicts with manually configured IP addresses. Administrators can use the Edit Interface dialog to manually resolve the conflict.

To resolve conflicts in the GUI:
  1. Go to Network > IPAM > IPAM Interfaces.

  2. Hover your mouse over the conflict marker. The conflict marker information is displayed.

  3. Click Edit Interface. The Edit Interface pane opens.

  4. Enter a new IP address and netmask in the IP/Netmask field.

  5. Click OK. A confirmation message is displayed.

  6. Click OK.

Add new IPAM GUI page 7.2.1

IP address management (IPAM) details have been migrated to a centralized Network > IPAM page. The IPAM page replaces the Security Fabric > Fabric Connectors > IPAM widget and uses three tabs to display information:

  • IPAM Interfaces

  • IPAM Rules

  • IPAM Settings

Note

The IPAM page is only viewable on a FortiGate that is not in a Security Fabric or on the root FortiGate in a Security Fabric. Downstream FortiGates in a Security Fabric will display a notification to view the root FortiGate.

To enable IPAM status in the GUI:
  1. Go to Network > IPAM > IPAM Settings.

  2. Select Enabled. The Subnets field is displayed.

    Note

    IPAM status is disabled by default. After performing a factory reset, enabled IPAM status will auto-generate two subnets. These subnets can be modified and deleted.

  3. Enter the IP address and netmask in the Subnets field. Additional subnets can be added using the +.

  4. Click OK. A chart is displayed showing available space and IP address overlap between IPAM-Managed and Manually Configured IP addresses.

To enable IPAM status in the CLI:
config system ipam
    set status enable
    config pools
        edit "default-pool"
            set subnet 172.31.0.0 255.255.0.0
        next
        edit "lan-pool"
            set subnet 192.168.0.0 255.255.0.0
        next
    end
end

IPAM conflict markers

The IPAM Interfaces tab displays conflict markers when there are IP pool IP address conflicts with manually configured IP addresses. Administrators can use the Edit Interface dialog to manually resolve the conflict.

To resolve conflicts in the GUI:
  1. Go to Network > IPAM > IPAM Interfaces.

  2. Hover your mouse over the conflict marker. The conflict marker information is displayed.

  3. Click Edit Interface. The Edit Interface pane opens.

  4. Enter a new IP address and netmask in the IP/Netmask field.

  5. Click OK. A confirmation message is displayed.

  6. Click OK.