Description
This article describes the configuration requirements on FortiGate to connect the FortiSwitch to FortiGate's physical interface and manage it.
Scope
FortiGate.
Solution
- Create a new LAG-interface and add physical interface(s) as its member.
- Make sure that in the LAG-interface, FortiLink is enabled.
config system interface
edit "LAG-Interface"
set ip 10.255.2.1 255.255.255.0 <----- IP Assigned with /24.
set fortilink enable <----- FortiLink is enabled.
set allowaccess ping fabric
set type aggregate
set member "internal1" <----- Internal1 is a member of this aggregate interface.
end
- Once FortiLink has been enabled in the above step, multiple VLAN interfaces are automatically created under LAG-interface. Do not delete.
- Also, assign an IP address to this interface. DO NOT HAVE THIS IP TO BE /32.
- Make sure that DHCP is enabled for the 'LAG-interface'. FortiSwitch will grab IP from this scope and this IP is explicitly for the management of the FortiSwitch.
- Select Advanced under DHCP settings and select LOCAL for NTP Server.
- Now, connect the FortiSwitch to the physical interface chosen (internal1 here) as a member of the LAG-interface.
- Wait around 2 minutes and the FortiSwitch will be visible in Managed FortiSwitches. Authorize the device under Wireless and Switch Controller -> Managed FortiSwitches, 'right-click' on the FortiSwitch, and Authorize.
- Wait for 5-10 minutes and confirm if the device comes online.
- If the FortiSwitch is still showing offline, reboot the FortiSwitch and monitor.
Related article:
Troubleshooting Tip: Fix FortiSwitch showing with the 'Offline' status
