Hi All,
In the organisation I'm working for, we are using Watchguard and Fortinet firewalls.
These devices are queried via SNMP by LS, with success, that gets in return the MAC and IP of all physical and VLAN interfaces. A VLAN interface holds the gateway of its relevant VLAN.
This information is catched by LS, and I was supposing it is able to store and use this information.
For security reason, CISOs and Firewall builder do not recommend to scan SNMP on every VLAN gateway address, but only on the VLAN interface of the Management VLAN.
When LS scan the IP of the VLAN gateway, that will not respond by design, it reports it as a Network device, and does make the link with the information it got.
It is a problem, because each of our firewalls have up to 30 VLANs configured, and Lansweeper reports it as 30 different Network devices, plus the one it knows on the management VLAN that respond to SNMP.
Why LS does not use the information he got from the firewall, to avoid to "eat" as much device licences that we have VLAN gateways ?
Is there any workaround to force it to understand that the VLAN Gateway adress belongs to the same device ?
Thanks for you help.
