FortiManager: Error when enabling DHCP on FortiSwitch VLAN

Question

Hi,

FortiManager Version - v7.4.6 build9266 (Mature), ADOM - 7.4

FortiGate-40F-3G4G - v7.4.7,build2731 (GA) (Mature)

FortiSwitch-108E-POE - v7.4.5-build880,241127 (GA)

Just trying to build a little lab setup using the kit above. When creating a VLAN (FortiSwitch Manager > FortSwitch VLANs), I am able to create the VLAN without issue and apply the VLAN to the switch using a template. The VLAN shows up on the FortiGate and all looks good.

The issue is when I enable DHCP on the VLAN. When attempting to save the config I get the error message: -

Copy device global objects

Copy objects for vdom root

Commit failed:

error -999 - TCL error(missing operand at _@_

in expression "(24<<24)+(_@_<<16)+(<<8)+")

namespace import global::cli_ip2val

set startip_str [cli_get_value $CLI_CUR_NODE "" "" "start-ip"]

set endip_str [cli_get_value $CLI_CUR_NODE "" "" "end-ip"]

set id [cli_get_value $CLI_CUR_NODE "" "" "id"]

set startip [cli_ip2val $startip_str]

set endip [cli_ip2val $endip_str]

if {$startip > $endip} {

cli_set_errmsg "startip greater than endip"

return 0

}

set match_nr [cli_get_match_nr $CLI_CUR_PARENT_NODE 1 "" "start-ip" 0 $startip_str "end-ip" 0 $endip_str]

if {$match_nr > 1} {

cli_set_errmsg "duplicate"

return 0

}

## check overlap with current ip-range list

set tbllist [cli_get_tbl_list $CLI_CUR_PARENT_NODE ""]

foreach e $tbllist {

set id2 [cli_get_value $e "" "" "id"]

if {$id eq $id2} {

continue

}

set startip2_str [cli_get_value $e "" "" "start-ip"]

set endip2_str [cli_get_value $e "" "" "end-ip"]

set startip2 [cli_ip2val $startip2_str]

set endip2 [cli_ip2val $endip2_str]

if { ($startip2 <= $endip) && ($endip2 >= $

Attached is a picture of the config. It is using variables, but I get the exact same message if I use fully defined IP's instead. FortiManager accepts the config and lets me save it, but whenever I then try to go through the Install Wizard I get the message above. It seems to be suggesting a problem with the DHCP address range having the start IP be greater than the end IP (cli_set_errmsg "startip greater than endip"), but as you can see it definitely isn't. Or a syntax issue (error -999 - TCL error(missing operand at _@_in expression "(24<<24)+(_@_<<16)+(<<8)+")?

Any advice would be greatly appreciated.

Thanks in advance!

singhl · Accepted Answer

Hello, Looks like the netmask set for DHCP is the cause here. Please use decimal notation (255.255.255.0) instead. Regards,

Anthony_E · Answer

Hello, Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible. Thanks,

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded