Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
VanDerTuch
New Contributor

Created on ‎01-27-2024 05:47 AM

Access VLAN on Fortigate

Hello, i am playing with older Fortigate 100D, everything works fine, but i cannot find how to create access port for specific VLAN.

There is Hardware switch(port1-port16), how can i add specific port to specific VLAN? Something like on cisco switch(switchport mode access, switchport access vlan 10). L2 interface, not L3 vlan interface..? Normal fortigate way is creating vlan interface under physical port(but it is L3 interface). My goal is create classic L2 switchport without any ip addressing in specisifc VLAN.

Thanks a lot for any advice.

forti.PNG

Labels:
1115
0 Kudos
2 REPLIES 2
AEK
SuperUser
SuperUser

Created on ‎01-27-2024 06:23 AM

Hello

So on FG you want to put one of the hardware switch ports as access port in a specific VLAN?

Never seen such on FG but it is possible that VLAN switch can have something to do with that.

https://docs.fortinet.com/document/fortigate/7.4.2/administration-guide/183531/virtual-vlan-switch

But the question is why you need such configuration? If you explain your need we may suggest a solution.

AEK
AEK
1096
0 Kudos
ede_pfau
SuperUser
SuperUser

Created on ‎01-27-2024 11:34 AM

VLAN ports on a FGT are trunk ports, i.e. tagged. If you need an access port to connect a non-tagging host (that's what I assume) the easiest way is to use an additional FortiSwitch.

Of course, the link to the Admin Guide is highly valuable. It makes this typical switch feature available on a lesser used hardware detail on a FGT, the hardware switch. That's why not all FGT models support it, they need the switch chip (ISE).

 

But, note the limitations:

1- not available on all models

2- FortiOS 7.4, which is cited, is "bleeding edge". I would not use it in a production environment at the moment, although I admit it's exiting. Just too early. So better stick to v7.2 which supports VLAN switches as well.

 

Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
1073
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.