Hello, I have a 1101f series firewall. I want to connect 6 fortiswitches. When I connect the switches over fortilink by jumping from each other, there is no problem and all of them get ip and the connection status is actively monitored. However, when I need to connect with different 6 ports of the firewall (due to the wiring structure of the building), I enter 6 ports into fortilink. When I connect the switches, they get ip first, but the connections go immediately. DHCP does not work and they cannot get ip. What is the reason for this?
In addition, I created a fortilink port as a Hardware Switch. When I put the ports into it, all switches get ip but only 2 of them seem to be active. I can reach the others but they do not seem active. What could be the reason for this?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
The document I gave in the link gives all the details required for the connection.
After applying the given document, it did not appear active except for 2 devices. Later, when I entered the fortiswitch interface, I saw that the time was incorrect. I entered the gateway address of the switches as ntp server and the time was corrected. Devices went online.
Fortios 7.0
What is the X in your FOS 7.0.X?
And what is the firmware version inside the FortiSwitches?
Fortigate 7.0.14
Fortiswitch 7.0.4
In case you have "split interface" enabled on your FortiLink interface please try disable it and redo the test.
Created on 02-25-2024 06:33 AM Edited on 02-25-2024 06:34 AM
I tried. The result is the same
So the switches are not connected to each other and you want to terminate all their uplinks directly in FGT and configure them all to be in FortiLink mode?
If this what you are trying to achieve than this is not a common/recommended topology, you can refer to the topology section of the guide for more options, maybe consider some extra cabling.
NOTE: Using the hardware or software switch interface in FortiLink mode is not recommended in most cases. It can be used when the traffic on the ports is very light because all traffic across the switches moves through the FortiGate unit.
Actually, the topology I have given below is exactly what I want. However, it does not give any information about how to do it.
Than make sure you don't have any loop (switches should have only the uplink connected to FGT and the end hosts) and verify that STP is not disabling any of the ports. From the architecture of this model there should be no differences of the chosen ports when building the HW switch.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1712 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.