Help
FortiSwitch
FortiSwitch: secure, simple and scalable Ethernet solutions
DW_FTNT
Staff
Staff

Created on ‎11-11-2022 09:38 AM

Article Id 229616

Technical Tip: Remove a VLAN from FortiLink for Fortiswitch managed by FortiGate

Description This article explains how to remove a VLAN from a FortiLink on a FortiSwitch managed by a FortiGate with console commands.
Scope FortiSwitch, FortiGate, FortiLink
Solution

By default, the FortiGate will sync and put VLANs back on the FortiLink after they're removed. Use the following commands on the FortiSwitch (not the FortiGate) to permanently remove VLANs:

 

# config switch trunk

edit "_FlInKxxxx"

set static-isl enable

set static-isl-auto-vlan disable

end

 

Reboot the FortiSwitch after the above command, then run the following:

 

# config switch interface

edit "xxxxxxx" (the ID of the FortiLink interface)

set allowed-vlans 1,xx,xx,4088-4094

end

 

It will still be possible to use the VLAN on the FortiSwitch, but it will be pruned off the FortiLink (trunk).
4343
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.