Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
skobayashi_FTNT
Staff
Staff

Created on ‎02-04-2013 09:27 PM Edited on ‎01-04-2022 01:01 PM By Anonymous

Article Id 196686

Technical Note: VLAN interface can't pass traffic on management interface

Description
This article notes that VLAN interface can't pass traffic properly on some FortiGate models,
when the VLAN interface is created on mangement interface.
This is due to hardware limitation of network interface on those models.

Scope

  • All FortiOS
  • FortiGate Models, Management I/F
    • FortiGate 1240B, port39
    • FortiGate 3040B/3140B, mgmt1
    • FortiGate 3950B/3951B, mgmt1
    • FortiGate 600C/800C/1000C, mgmt1
    • FortiGate 3240C, mgmt


Solution

  • Prior to FortiOS 5.0.2
Though FortiOS allows to create VLAN interface on those management interfaces, it won't work properly.
So please take care not to use Tag-VLAN on management interface in your network.

  • FortiOS 5.0.2 and later
FortiOS won't allow to create VLAN interface on those management interfaces anymore.

 

Related Articles

Technical Note: Network interface "mgmt" on FortiGate 100D units can not be used to create VLAN inte...

Labels:
4940
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.