Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
spathak
Staff
Staff

Created on ‎09-02-2019 08:03 AM Edited on ‎09-25-2024 05:44 AM By Moderator

Article Id 190563

Technical Tip: How to add or remove physical interface from Hardware/Software switch

Description

 

This article explains how to add or remove physical interface from Hardware/Software switch. 

 

Scope

 

FortiGate.

Solution

 

To add the Physical interface to the hardware switch, follow these steps:

Note
All references to the physical interface must be removed and the IP address of the physical interface must be set to 0.0.0.0/0.0.0.0 to add it to a hardware/software switch.
At least one interface should be a member of a switch, or it will be necessary to delete the switch configuration completely.

Via the GUI:

 

  1. Go to Interface -> Hardware Switch.
  2. Under Interface Members, select 'add'.

Select the respective physical interface from the 'Select Entries list'.

 

Stephen_G_0-1722959329129.png

 
 

To remove the interface, deselect the interface from the Interface Members list by selecting the 'x' mark from Interface Members.

Via the CLI:

To add a Physical interface to a hardware switch:


 config system virtual-switch
    edit lan
        config port
            edit <interface name>                               <- Physical interface name.
end


 To remove the interface from the hardware switch:


config system virtual-switch
    edit lan
        config port
            delete <interface name>                             <- Physical interface name.
end

 

For 7.2.8 FortiOS and above:

It is required to set a physical switch for the hardware switch interface to get the option to configure the 'config port'.

Before configuring the physical switch:

 

FG4H1F-5 # config system virtual-switch

FG4H1F-5 (virtual-switch) # edit lan
new entry 'lan' added

FG4H1F-5 (lan) # config port

command parse error before 'port'
Command fail. Return code 1

 

After configuring the physical switch:

 

FG4H1F-5 # config system virtual-switch

FG4H1F-5 (virtual-switch) # edit internal
new entry 'internal' added
FG4H1F-5 (internal) # set physical-switch sw0
FG4H1F-5 (internal) # config port

 

 

To add the Physical interface to the software switch, follow these steps:

Via the GUI:

  1. Go to: Interface -> Software Switch -> edit.
    Interface Name: Internal.
    Type: Software Switch.

  2. On Interface Members, select 'add'. Select the respective physical interface from the 'Select Entries list'.

 

Stephen_G_1-1722959535826.png

 


To remove the interface, deselect the interface from the Interface Members list.

Via the CLI:

To add a Physical interface to the software switch:


 config system switch-interface
    edit internal
        set member <list of interface>
end

 

When adding an interface to a software switch configuration, make sure all other interfaces are added to the member list.
   
For example:


 config system switch-interface
    edit internal
        set member lan1 lan2                           <- Currently, lan1 and lan2 are members of an internal software switch.
    next


To add lan4, re-add all of the interfaces to the member list again.


 config system switch-interface
    edit internal
        set member lan1 lan2 lan4
    next
end

 

To remove the interface from the software switch:

 

config system switch-interface
    edit internal
        unselect member  lan4                          <- Physical interface name.
    next
end

Labels:
92034
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.