Our sites follow a x.y.unique.0/24 ip scheme. We are starting to introduce fortiswitches with fortigate firewalls.
The switch is connected via the fortilink port and is assigned a 10.255.1.x IP from the DHCP server assigned to the fortilink interface. This prevents us from accessing the switch GUI.
site traffic is assigned to the interface lan.fortilink with its DHCP server handing out the site IP.
I see that multiple DHCP servers can be assigned to an interface, but I was hoping I could assign the lan.fortilink interface DHCP server to the fortilink interface.
My though process is that the switch would get an internal address and therefor the gui would be reachable.
GUI should be reachable but keep in mind it's behind the FortiLink interface and so you would need a policy to access it. This has to be done via CLI. That said, you probably don't need to access the switch GUI once its managed by the FortiGate. All VLAN and port config happens on the FortiGate now.
Regarding your DHCP servers. The FortiLink interface has a DHCP server and this is reserved for FortiSwitches only.
You create new FortiLink VLANs with your own addressing and VLAN ID assignment and DHCP server configs to service your various internal networks.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.