Help
FortiSwitch
FortiSwitch: secure, simple and scalable Ethernet solutions
zendodg
Staff
Staff

Created on ‎10-30-2023 10:35 PM

Article Id 281952

Technical Tip: Interface Trunk on FortiSwitch

Description

This article describes the difference between trunk interfaces and tagging VLAN on interfaces.
Scope

FortiSwitch.
Solution

When the FortiSwitches are connected to a third-party switch,  there are two kinds of interfaces to connect them.

 

On FortiSwitches, an interface trunk is a LAG interface (boundle interface, could be LACP).  In a interface port,  it is possible to add VLANs to be transmitted on the same port with its VLAN tag ID.

 

These are configuration examples.

 

Note:

These examples are on FortiSwitch standalone.

 

Configuring a LACP interface, active mode:

 

config switch trunk

    edit "To_third_party_device"

        set mode lacp-active           <-----Enable LACP active mode.

        set members "port11" "port12"  <----- Members of LACP interface.

 

config switch interface

    edit "To_third_party_device"

         set native-vlan 10            <-----  VLAN without tag on interface trunk.

         set allowed-vlans 322,351     <----- Tagged VLANs on interface trunk.

 

 

configuring a port with VLAN tagging:

 

config switch interface

    edit "port27"     <----- Port to configure.

         set native-vlan 10 <----- VLAN without tag.

        set allowed-vlans 1,2,5-10  <----- Tagged vlans.
6364
Suggest New Article
Article Feedback
Comments
laltuzar
Staff
Staff
‎04-09-2025 03:46 PM

Great stuff

Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.