Description
This article describes that when small form-factor pluggable (SFP) transceivers are installed on the FortiGate, issues may be encountered with establishing a valid physical link.
Symptoms include associated ports being shown with the link down (red arrow icon) on the FortiGate Web Interface and link lights on the FortiGate device for the associated ports not indicating a link.
In this case, verifying the FortiGate configuration for the associated port is worthwhile.
Scope
FortiGate.
Solution
Show the full current configuration for the associated interface with the SFP transceiver installed:
config system interface
edit <interface name>
show full
Show possible speeds/duplexes supported for the interface:
config system interface
edit <interface name>
set speed ?
end
Determine the speed and duplex settings of the other peer device terminating the link with the FortiGate's SFP transceiver and configure these settings manually on the FortiGate to match, i.e. to set to 1000M full-duplex use these CLI commands:
config system interface
edit <interface name>
set speed 1000full
end
To verify that the speed has been manually set, use the following CLI commands replacing <interface name> with the actual interface name (i.e. wan1, port1, etc.):
get sys interface physical
diag hardware deviceinfo nic {interface name>
Note:
Ensure the transceiver is connected to the correct SFP+ slot. For example, a GigE transceiver should be connected to a GigE SFP+ slot on FortiGate, and connecting to a 10GigE SFP+ slot does not bring the link up.
When a valid physical link has been established over the SFP transceiver, the FortiGate's Web Interface should display the link up (green arrow icon) and the link lights on the FortiGate device for the physical port should indicate a link.
