Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
mflamingos
Staff
Staff

Created on ‎08-31-2018 05:43 PM Edited on ‎11-24-2021 01:09 AM By Community Manager

Article Id 190377

Technical Tip: Processing non-tagged packets on a transparent unit

Description
This article describes how to process non-tagged packets on a transparent unit. When sending NON-Tagged packets from a Switch to a FortiGate unit in transparent mode, packets are dropped unless the receiving interface is a physical one.

Solution
On FortiGate units, the physical interfaces are the only ones able to process (send and accept) non-tagged packets.

Non-Tagged packets (like VTP, CDP, ...) should never be directed to a non-physical interface, like a VLAN sub-interface. Also "stpforward" must be applied on the port configuration.

1035
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.