When users update FortiGate firmware to v7.6.1 or above and observe that a FortiSwitch goes offline, it is necessary to check the settings on the FortiLink-enabled interface.

If Link-Layer Detection Protocol (LLDP) is set to disable/vdom under the FortiLink interface, use the following commands to enable it. This will bring the FortiSwitches online:

config system interface

    edit <port>

        set lldp-reception enable

        set lldp-transmission enable

end

This behavior occurs due to a behavior change introduced in v 7.6.1, where the default method used to discover FortiLink members (i.e. 'set fortilink-neighbor-detect' under 'config system interfaces') was changed from 'fortilink' to 'lldp'. However, during an upgrade-for example, from v7.4.7 to v7.6.1, the 'fortilink-neighbor-detect' remains as 'fortilink'. As a result, after upgrading, 'fortilink-neighbor-detect' needs to be changed to 'lldp' manually. LLDP must also be enabled for this 'fortilink-neighbor-detect' method to work, which is why enabling 'lldp-reception' and 'lldp-transmission' is required.

config system interface

    edit <fortilink-port>

               set fortilink-neighbor-detect lldp

end

For more info, refer to entry #1061121 on the following page: FortiOS 7.6.1 Release Notes (Changes in default behavior).

In case the above commands are already in place but still unable to bring up the FortiSwitch online, try to enable device identification under the FortiLink interface.

config system interface

    edit <port>

       set device-identification enable

end

Solution:
The issue is under investigation.
A fix is expected in the FortiOS v7.4.9 and v7.6.5 releases.
For further assistance, contact Fortinet Technical Support.

Related documents:

Known issues - FortiGate 7.6.2 documentation

Troubleshooting Tip: FortiSwitch Connection to FortiGate