| Description | This article describes how to integrate and configure L2 connectivity from FortiGate to Unifi Switch to provide VLAN support. |
| Scope |
FortiGate. |
| Solution |
A VLAN interface in FortiGate is being applied to its physical interface to support or create multiple broadcast domains. In this setup, FortiGate is integrated to the Unifi switch to allow VLAN tagging across the link. Refer to the related article to create the VLAN interface on FortiGate.
The configuration below shows the port configuration of the Unifi switch going to FortiGate to support VLAN tagging(trunk) and going to an IP Phone (access VLAN).
Configuration of trunk going to FortiGate: Login to UniFi Management console -> Network -> Ports, select the port to configure as Trunk, set Port to Active, set the Native VLAN, and set Tagged VLAN Management to 'Allow All', this will make the interface a trunk.
Configuration of access VLAN going to IP Phone: Login to UniFi Management console -> Network -> Ports, select the port to configure as Access Port to a Particular VLAN, set Native VLAN/Network to 'VOIP (120)' VLAN, and set Tagged VLAN Management to 'Block All', this will set the interface to access port or just allow one VLAN which is the native VLAN that has been set.
Related article: |
