FortiNAC and managed FortiSwitch.. SNMP vs Syslog

Forum|Forum|10 months ago
July 20, 2025
1 reply
634 views

Hi NAC admins

FortiNAC 7.6.3.

FortiOS 7.4.8 managing FortiSwitches 7.4.6.

According to "FortiNAC - FortiSwitch FortiLink Integration Guide" doc, both SNMP MAC Notification & Syslog methods are supported.

https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/bf034eae-75df-11ef-8355-fa163e15d75b/FortiNAC-F_7.x-FortiSwitch_FortiLink_Integration_Guide.pdf

From the pros and cons list on page 7 & 8, am I supposed to I understand that Syslog method is more recommended than SNMP MAC notif method?

Anyone tried both and can advise on the best one?

Best answer by ebilcari

The recommended way in term of quick response and scalability is to use L2 MAC traps. This will require direct communication (routing), no NAT between FSW and FNAC.

Syslog was previously recommend when compared to SNMP link status traps which didn't contain MAC information and require a full L2 poll of the FGT each time a port status changed.

ebilcariAnswer

Staff

The recommended way in term of quick response and scalability is to use L2 MAC traps. This will require direct communication (routing), no NAT between FSW and FNAC.

Syslog was previously recommend when compared to SNMP link status traps which didn't contain MAC information and require a full L2 poll of the FGT each time a port status changed.

Emirjon

AEKAuthor

SuperUser

Its more clear now.

Thanks Emirjon!

AEK

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded