| Description | This article describes the issue of LACP interface flapping that occurs when adding or removing members from an aggregate interface on FortiGate, and guides understanding of the root cause and how to address the issue. |
| Scope | FortiGate v6.4, v7.0, v7.2, v7.4, Interface. |
| Solution |
To resolve the issue of LACP interface flapping when adding or removing members from an aggregate interface on FortiGate, follow these steps:
Understand that an aggregate will take the MAC address of the first member to be the MAC of the aggregate. It is essential to maintain the first member in the LAG configuration:
diagnose netlink aggregate name AGG6789 status: up ports: 4 actor MAC address: 00:0c:29:06:27:27 ... omitted
member: port6 permanent MAC addr: 00:0c:29:06:27:27
member: port7 permanent MAC addr: 00:0c:29:06:27:31
member: port8 permanent MAC addr: 00:0c:29:06:27:3b
member: port9 permanent MAC addr: 00:0c:29:06:27:45
config system interface
When adding or removing members from an aggregate interface, use the command under edit 'AGG6789', append member port10 to change ports to a LAG setting without affecting the order of the LAG list on the CLI.
edit "AGG6789" append member port10
config system interface edit "AGG6789" set vdom "root" set type aggregate set member "port6" "port7" "port8" "port9" "port10" next end
diagnose netlink aggregate name AGG6789 status: up member: port6
member: port7
member: port8
Avoid changing the order of the first member of the LAG list when configuring through either the GUI or the CLI, as this can cause the LACP MAC address to change, resulting in interface flapping.
Verify the LACP MAC address using the command: 'diagnose netlink aggregate name AGG6789'.
By following these steps, the issue of LACP interface flapping when adding or removing members from an aggregate interface will be addressed in the future on FortiGate. |
