- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hardware switch - dot1x
Hi
To do dot1x on a client directly connected to the firewall, the model needs a hardware switch.
I believe you can only have one broadcast domain/vlan on the hardware switch
So, by default does this mean there is no way to have clients sitting in different vlans, or is there a workaround/solution to this.
Thanks
- Labels:
-
FortiGate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
That assumption is incorrect.
You can make multiple virtual switches out of the default hardware-switch. On top of these virtual switches, you can configure VLANs and enable dynamic VLAN-assigmnent based on dot1x authentication.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
thanks :)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Quick addition: The documentation for this feature doesn't seem to be maintained anymore in recent documents versions, so here's a link to the old documentation in case you struggle with finding it:
https://docs.fortinet.com/document/fortigate/6.0.0/handbook/42807/virtual-switch
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I was looking in 7.2 guide so that does explain why I couldnt see anything
thanks very much