Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Sachin_Alex_Cherian_
Staff
Staff

Created on ‎04-20-2022 01:05 AM Edited on ‎10-13-2025 11:00 PM By Community Manager

Article Id 209727

Technical Tip: Creating and Managing multiple FortiLink interfaces from FortiGate GUI

Description

This article discusses how to create additional FortiLink interfaces on the FortiGate, as well as how to manage those FortiLinks via the FortiGate GUI.
Scope

FortiOS v6.4.2 and later.
Solution

In earlier FortiOS versions, it was possible to create additional FortiLink interfaces via the CLI, but it was not possible to manage these additional interfaces via the GUI. Instead, only the first FortiLink interface (and associated FortiSwitches) would be visible, with any additional FortiLink interfaces and associated switches only being manageable from the CLI.

 

As of FortiOS v6.4.2 and later, support was added for managing multiple FortiLink interfaces from the FortiGate GUI (though the creation of FortiLink interfaces must still be done via the CLI). This was included as part of Change #640563 and was noted in the FortiOS v6.4.2 Release Notes.

 

Before v6.4.2, the FortiGate GUI under WiFi & Switch Controller -> FortiLink Interface would only show a single FortiLink interface if multiple were configured:

 

Sachin_Alex_Cherian__2-1650440716308.jpeg

 

However, after upgrading to FortiOS v6.4.2 or later, the same section will show multiple FortiLink interfaces that can be selected and edited:

 

Multiple_FortiLink_Post_6.4.2.png

 

Additionally, other sections of the FortiGate GUI will now accommodate multiple FortiLink interfaces, including Managed FortiSwitches and FortiSwitch Ports under WiFi & Switch Controller.

 

Take note that additional FortiLink interfaces must still be created from the CLI first by running set fortilink enable, as it is still not possible to create multiple FortiLink interfaces from the GUI directly:

 

config system interface

    edit <FortiLink_Interface_Name>

        set fortilink enable

    next

end

 

Side notes:

  • While it is generally possible to run set fortilink enable on any type of physical interface, the recommendation is to use Aggregate interfaces wherever possible (or barring that, Hardware/VLAN Switch interfaces) since that can offer more flexibility when it comes to changing what FortiGate member interfaces are used to physically connect to the FortiSwitch.
  • Additionally, take care to assign IP addressing and enable DHCP server functionality on the new FortiLink interface so that new FortiSwitches can communicate with the FortiGate over the network.
  • Take note that the following CLI configuration has since been removed as of FortiOS v6.4.2, since the FortiLink limitations no longer exist:

 

config switch-controller global

    set allow-multiple-interfaces enable <--- Deprecated/Removed.

end
8869
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.