Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Tony79
New Contributor

Created on ‎06-14-2025 01:18 PM Edited on ‎06-15-2025 12:47 AM

How to switch defined vlan on Fortilink interface with vxlan

Hello,

 

I need some help in the following topic, I am note able to solve to mix external end internal vlans into Fortilink.

 

There is a FortiGate connected to 8 FortiSwitches via FortiLink interfaces. VLANs and subnets created on the FortiLink can be used on the switches without any issues. However, I need to be able to forward a VLAN arriving in a VXLAN to a specific FortiSwitch port.

fortilink_vlans.png

 

I can pass the incoming VXLAN as a trunk through a software switch to a manually configured switch without FortiLink, and I can use the VLANs. However, in this case, I lose the switch controller functionality, or I have to establish a separate physical connection.

 

I would like to request assistance on how to switch a VLAN within a VXLAN to VLANs defined on FortiLink, or how to forward all tagged VLANs existing within the VXLAN to the switches via FortiLink.

 

Thank you fro your help in advance.

 

Regards,

Antal

 

 

Labels:
300
0 Kudos
5 REPLIES 5
Jean-Philippe_P
Moderator
Moderator

Created on ‎06-17-2025 12:10 AM

Hello Tony79, 

 

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible. 

 

Thanks, 

Jean-Philippe - Fortinet Community Team
242
Jean-Philippe_P
Moderator
Moderator

Created on ‎06-18-2025 01:34 AM

Hello,

 

We are still looking for an answer to your question.

 

We will come back to you ASAP.

 

Thanks,

Jean-Philippe - Fortinet Community Team
224
funkylicious
SuperUser
SuperUser

Created on ‎06-18-2025 01:56 AM Edited on ‎06-18-2025 01:57 AM

i think that as described in this article, https://community.fortinet.com/t5/FortiGate/Technical-Tip-VXLAN-over-IPsec-for-multiple-VLANs-using-... , you would need to do the mapping of vni / vlan interface on the switch interface accordingly.

"jack of all trades, master of none"
"jack of all trades, master of none"
219
Tony79
New Contributor

Created on ‎06-18-2025 02:17 AM

Thank you for your help. I have problem with this solution, that I cannot add vlan on Fortilink interface to the Software switch.

208
FPatrik
Staff
Staff

Created on ‎06-20-2025 03:16 AM

Hi Tony79,

 

We have an official article on LAN extensions between FortiGates. 

 

https://docs.fortinet.com/document/fortigate/7.6.3/administration-guide/097658/example-gui-configura...

 

As for using the software switch, you have to make sure the VLAN you add to it, has no other references at all - no IP address, no DHCP server etc. 

 

https://docs.fortinet.com/index.php/document/fortigate/7.6.0/administration-guide/277799/software-sw...

155
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.