FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
JianWu
Staff
Staff
Article Id 348362
Description This article explains an issue when user has a FortiGate cluster (A-P) connecting to a FortiSwitch, multiple ports are configured and connected, but only one port shows up.
Scope FortiGate FortiLink FortiSwitch
Solution

Topology:

FortiGate and FortiSwitch topology match the following two scenarios.

HA-mode FortiGate units managing a FortiSwitch two-tier topology

HA-mode FortiGate units managing a single FortiSwitch unit


Symptom:

In this example, the user has two ports configured in a FortiLink and connects to the same FortiSwitch, but only one port shows up:

 

FortiLink-Only-1-Port-UP.PNG

 

Reason:

This is due to a config mistake in the FortiLink Setup as seen below. By default, the option 'FortiLink Split interface' is enabled and as the tooltip suggested, this should only be enabled when the FortiLink connects to more than 1 FortiSwitch which is not the case here.

 

FortiLink-Setup.PNG

 

Correction:

After the option 'FortiLink Split Interface' is disabled as seen in the screenshot below, both links come up. If FortiLink includes more than two ports, then all ports will come up.

 

FortiLink-Setup-SplitInterface-disabled.PNG

 

CLI configuration:

 

config system interface
    edit "Switch"

        set fortilink-split-interface disable

    next

end

 

Related Document:

Configuring FortiLink

HA-mode FortiGate units managing a single FortiSwitch unit.

HA-mode FortiGate units managing a FortiSwitch two-tier topology

Contributors