Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Jin-Gyu
New Contributor III

Created on ‎05-29-2025 03:17 AM

How to work LACP static mode in Fortigate

Good morning!

 

How does static mode work in LACP on Fortigate?
As far as I know, Fortigate don't send lacp messages in static mode,

so how can I communicate in a static-static configuration?

 

Thank you

Labels:
1223
0 Kudos
2 Solutions
kaman
Staff
Staff

Created on ‎05-29-2025 04:07 AM

Hi Jin-Gyu,

LACP offers two dynamic modes, "active" and "passive," which use LACP messages to negotiate and form an aggregate link.

When a FortiGate is configured with "static" LACP mode, the interface acts as a simple trunk, and all ports in the LAG will participate in traffic transmission. This means that if the FortiGate has "static" LACP mode enabled and a peer device also has LACP enabled (active or passive), the connection will not come up, as LACP negotiation is not occurring.

The "static" mode is often used when a peer device on the other end of the LACP link does not support LACP or when you want to force a specific set of ports into the LAG without relying on LACP negotiation. For example, when connecting two FortiGate units in an LACP configuration, you might choose "static" mode if LACP is not needed between them.

Please refer to the documents below for more information:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Initial-troubleshooting-steps-for-LACP-Lin...

https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGate-and-FortiOS-support-for-802-3ad-...).


https://docs.fortinet.com/document/fortiswitch-manager/7.2.3/administration-guide/801170/adding-802-...

If you have found a solution, please like and accept it to make it easily accessible to others.

Regards,
Aman

View solution in original post

1200
Yurisk
SuperUser
SuperUser

Created on ‎05-29-2025 06:14 AM Edited on ‎05-29-2025 07:48 AM

For all others reading this post, to prevent confusion - there is no such thing "static LACP" in Fortigate (or anywhere for that matter), only, as @kaman pointed "active" or "passive", "static" (confusingly also named as a lacp mode) means do aggregate interfaces but disable LACP completely on them.

https://yurisk.info

View solution in original post

https://yurisk.info
1175
0 Kudos
5 REPLIES 5
kaman
Staff
Staff

Created on ‎05-29-2025 04:07 AM

Hi Jin-Gyu,

LACP offers two dynamic modes, "active" and "passive," which use LACP messages to negotiate and form an aggregate link.

When a FortiGate is configured with "static" LACP mode, the interface acts as a simple trunk, and all ports in the LAG will participate in traffic transmission. This means that if the FortiGate has "static" LACP mode enabled and a peer device also has LACP enabled (active or passive), the connection will not come up, as LACP negotiation is not occurring.

The "static" mode is often used when a peer device on the other end of the LACP link does not support LACP or when you want to force a specific set of ports into the LAG without relying on LACP negotiation. For example, when connecting two FortiGate units in an LACP configuration, you might choose "static" mode if LACP is not needed between them.

Please refer to the documents below for more information:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Initial-troubleshooting-steps-for-LACP-Lin...

https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGate-and-FortiOS-support-for-802-3ad-...).


https://docs.fortinet.com/document/fortiswitch-manager/7.2.3/administration-guide/801170/adding-802-...

If you have found a solution, please like and accept it to make it easily accessible to others.

Regards,
Aman

1201
Jin-Gyu
New Contributor III
In response to kaman

Created on ‎05-29-2025 06:55 AM

Thank you for your kind answer.
Can I ask you one more question?
If use lacp-mode static because the peer equipment does not support lacp, it seems similar to use h/w switch or s/w switch instead of LAG. Is there a reason why fortigate exist lacp-mode static?

I'm sorry for bothering you.스크린샷 2025-05-29 225424.png

1162
0 Kudos
Yurisk
SuperUser
SuperUser

Created on ‎05-29-2025 06:14 AM Edited on ‎05-29-2025 07:48 AM

For all others reading this post, to prevent confusion - there is no such thing "static LACP" in Fortigate (or anywhere for that matter), only, as @kaman pointed "active" or "passive", "static" (confusingly also named as a lacp mode) means do aggregate interfaces but disable LACP completely on them.

https://yurisk.info
https://yurisk.info
1176
0 Kudos
Jin-Gyu
New Contributor III
In response to Yurisk

Created on ‎05-29-2025 07:54 AM

Thank you for answer. 

I misunderstood because it was in the same 'set lacp-mode'.

1143
Yurisk
SuperUser
SuperUser
In response to Jin-Gyu

Created on ‎05-29-2025 07:58 AM

Yes, it is indeed confusing they (Fortinet) list it as a kind of LACP mode when they mean to disable LACP altogether. 

https://yurisk.info
https://yurisk.info
1138
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.