Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mkhabbazi
Staff
Staff

Created on ‎09-12-2024 09:42 PM

Article Id 340415

Technical Tip: Aggregate interfaces is not stay up on FortiGate-400F/600F/1100E after upgrading to v7.0.11, v7.2.6 ,v7.2.5, v7.4.0

Description

This article describes an issue where the FortiGate-400F ,600F 1100E Aggregate interfaces are not being initialized correctly after upgrading to v7.0.11, v7.2.6, v7.2.5 , or v7.4.0

 

A notable symptom of the issue is that the LACP Aggregate interface status will show as down, but the physical member interfaces are all showing as up. Removing a member interface or changing the LACP mode may bring the Aggregate interface up temporarily, but later the status may change back to down.

 

FGT400f.PNG

Scope

FortiGate-400F/600F/1100E, FortiOS v7.0.11, v7.2.6, v7.2.5  v7.4.0.
Solution

The issue has been recognized as known issue ID 910651 and it has been resolved in v7.0.13, v7.2.8, v7.4.2.

 

Workaround: 

The root issue is related to improper initialization of interface speed settings. The current workaround is to remove each member interface from the Aggregate and change the speed setting to 1000full and then back to 1000auto.

 

Refer to the following KB article for changing interface speed settings:

Technical Tip: Changing the speed of a FortiGate interface
464
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.