Hi guys,
As shown in the diagram, ports 5 on FSW-1 and FSW-2 are connected to the Dell Switch on ports 45 and 46.
Can ports 5 on FSW-1 and FSW-2 be added to LACP on the Fortiswitch side? I know that it wont be MCLAG, but can they still be added to a LAG interface?
Or should they be set up as two individual trunk interfaces with spanning tree running on the ports?
Hi Austin
If you mean in the same LACP group then it will not be possible. As you said ICL is not supported on 108F.
Individual trunk interfaces with spanning tree is the only option.
Created on 05-29-2024 04:31 AM Edited on 05-29-2024 04:32 AM
thanks.
I am a total noob with switching.
Could you please let me know the solution to this, I enabled some stp settings on the FortiSwitches and the Dell switch but I guess they were incorrect as the Fortiswitch port went into discarding mode.
I dont know much about the spanning tree protocol and I see that the Dell Switch has the following config : "spanning-tree mode rapid-pvst".
I think priority for root bridge selection also needs to be set that I missed?
So I enabled rapid-pvst on ports 5 on the FortiSwitches but it didnt work.
I guess there is some additional config that is missing.
Could I run a simple version of STP protocol instead of rpvst?
-----------
FSW-1
edit "port5"
set vlan "_default"
set rpvst-port enabled
set allowed-vlans "APMGMTVLAN" "KM_Data" "quarantine"
set untagged-vlans "quarantine"
set export-to "root"
set mac-addr 74:78:a6:c4:15:15
next
---------------------
FSW-2
edit "port5"
set vlan "_default"
set rpvst-port enabled
set allowed-vlans "APMGMTVLAN" "KM_Data" "quarantine"
set untagged-vlans "quarantine"
set export-to "root"
set mac-addr 74:78:a6:c4:16:59
next
==================================================
with those settings in place, for testing , we unplugged port-5 on FSW-1 to check if traffic flows through FSW-2 but it didnt.
I was able to capture below logs from FSW-2
I can see that the error is : MV(PVST Port Vlan Mismatch) .
Does this mean the vlans need to be manually specified on the Dell switch for rpvst?
==================================================
KMAUSYDFSW02 # diagnose stp instance list
MST Instance Information, primary-Channel:
Instance ID 0 (CST)
Config Priority 28672
Bridge MAC 7478a6c41510, MD5 Digest 9999b43d77cc58bba8854f9991c4a487
Root MAC 7478a6c41654, Priority 24576, Path Cost 0, Remaining Hops 19
Regional Root MAC 7478a6c41654, Priority 24576, Path Cost 1, Root Port 8FNTV23015404-0
Active Times Forward Time 15, Max Age 20, Remaining Hops 19
TCN Events Triggered 9 (0d 0h 10m 43s ago), Received 10 (0d 0h 0m 7s ago)
Port Speed Cost Priority Role State HelloTime Flags
________________ ______ _________ _________ ___________ __________ _________ _______________
port2 - 200000000 128 DISABLED DISCARDING 2 ED
port5 1G 20000 128 DESIGNATED DISCARDING 2 EN MV
port6 - 200000000 128 DISABLED DISCARDING 2 ED
port7 - 200000000 128 DISABLED DISCARDING 2 ED
port8 - 200000000 128 DISABLED DISCARDING 2 ED
port9 - 200000000 128 DISABLED DISCARDING 2 ED
port10 - 200000000 128 DISABLED DISCARDING 2 ED
internal 1G 20000 128 DESIGNATED FORWARDING 2 ED
8FNTV23015404-0 2G 1 128 ROOT FORWARDING 2 EN
GT80FTK22051574 1G 200000000 128 DISABLED DISCARDING 2 ED
>>> port1 STP state FORWARDING mismatches trunk `GT80FTK22051574`: Active members in HW:
Flags: EN(STP enable), ED(Edge), LP(Loop Protection Triggered)
RG(Root Guard Triggered), BG(BPDU Guard Triggered), IC(PVST Port Inconsistent)
MV(PVST Port Vlan Mismatch)
Instance ID 15
Config Priority 28672 , VLANs 4094
Bridge MAC 7478a6c41510
Regional Root MAC 7478a6c41654, Priority 24576, Path Cost 1, Root Port 8FNTV23015404-0
TCN Events Triggered 1 (12d 1h 9m 4s ago), Received 2 (12d 1h 9m 1s ago)
Port Speed Cost Priority Role State Flags
________________ ______ _________ _________ ___________ __________ _______________
internal 1G 20000 128 DESIGNATED FORWARDING ED
8FNTV23015404-0 2G 1 128 ROOT FORWARDING EN
GT80FTK22051574 1G 200000000 128 DISABLED DISCARDING ED
>>> port1 STP state FORWARDING mismatches trunk `GT80FTK22051574`: Active members in HW:
Flags: EN(STP enable), ED(Edge), LP(Loop Protection Triggered)
RG(Root Guard Triggered), BG(BPDU Guard Triggered), IC(PVST Port Inconsistent)
MV(PVST Port Vlan Mismatch)
=======================================
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1738 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.