Hi all,
Is me again.
I am trying to deploy the SMB as a bridge to project my network as a first-tier layer.
The design is like this:
SMB uses Wan port to update UTM, Lan 3 and 4 are layer 2 and the connection like this:
The UTM feature on Fortigate is disabled already.
![design.PNG design.PNG](https://community.checkpoint.com/t5/image/serverpage/image-id/24169iC89F8E9C73D068A8/image-size/large?v=v2&px=999)
We find that:
IF both Lan 3 and 4 are under the same bridge, the UTM is NOT working.
IF both Lan 3 and 4 are under the same switch, the UTM is NOT working.
If we assign Lan 4 and 5 as one switch first, then assign the switch and Lan3 as the same bridge, the UTM is working now.
I wonder: why the hell with this design make things work?
![design2.PNG design2.PNG](https://community.checkpoint.com/t5/image/serverpage/image-id/24170i2651A47FB04CD064/image-size/large?v=v2&px=999)