How to disable Lockdown ISL

Forum|Forum|1 year ago
October 30, 2024
2 replies
4849 views

I want to turn off Lockdown ISL on Fortigate firewall, but it automatically turns back on. How can I turn it off?

I found this in the Fortigate library, but I didn't have much success.
https://docs.fortinet.com/document/fortiswitch/7.2.6/fortilink-guide/173260/configuring-fortilink

msanjaypadma

Staff

Hi @Gumo ,

Can use the CLI command
#diagnose switch-controller switch-recommendations fabric-lockdown-disable

If you have found a solution, please like and mark it as solved to make it easily accessible for everyone.

GumoAuthor

Explorer

I tried and got success, but it is still open, do I need to restart the firewall?

fricci_FTNT

Staff

Hi @Gumo ,

No need to restart the firewall after running that command.

Thank you,

fricci_FTNT

Staff

Hi @Gumo ,

I can see that you have only one FortiSwitch connected. The Lockdown ISL option applies only to ISL or ICL links. If the FortiGate does not detect any ISL or ICL the command "diagnose switch-controller switch-recommendations fabric-lockdown-disable" returns successful but the option remains enabled. That is expected.
If you have more than one FortiSwitch and at least one ISL or ICL, then you should be able to disable that option (either from GUI or CLI).

Thank you,

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded