Multiple VDOMs with Fortiswitch 448 FPOE

Hello Zhunissov4,

I had attempted this before the trend, what I'm finding is that you can't iauthorize the fortiswitches on multiple vdoms.

So i authorized the Fortiswitches on the root vdom then attempted creating VLAN interfaces for other VDOMs, when i attach an interface on that switch to the second vdom, it spins and spins and spins. I have to delete the vlan on second vdom to be able to manage the fortiswitches again. running firmware 5.4.1 and 3.4.2 on Fortigate and Fortiswitch respectively

Hello

I know this is very very old topic but I have to create something similar. The goal is to create infrastructure base on the FGT and many FS with 2 or 3  vdoms and distribute vdoms across this network. On the and I need assign part of the ports on every switches to different vdom, Is it possible on os 7.2 ? How to do this .

Concept

For any help, I'll be appreciated. 

Even if it will be confirmation from Fortinet - "no it is not possible" :D

I could be wrong but if you "manage" FSWs from a FGT over fortilink, the FSWs are managed at the vdom the fortilink is terminated at. By default "root" vdom. Then all ports and VLANs you create from the switch-controller at the FGT specifically at root vdom would belong to the root vdom. So I don't think it's possible if "managed".

My recommendation if you have to use FSWs instead of other types of switches like Cisco, Juniper, HPE, or whatever, you configure them as "standalone" then they would work as any other types of switches, except some feature differences. Then you can do whatever you need to do, like setting up multiple VLAN sets and create clusters of ports with those VLAN sets then connect them to FGT's ports per VDOM.

Wait for other comments that deny my claim.

Toshi

It seems this doc says you can.

https://docs.fortinet.com/document/fortiswitch/7.0.8/devices-managed-by-fortios/801172/multitenancy-and-vdoms