Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ahamza89
New Contributor

IGMP SNOOPING configuration getting erased.

I have configured my fortiswitches for IGMP-snooping. but after 2-3 days streaming stopped. when I check, the configuration I did was not their. both from Core and distribution switches... 

 

****Core switch Config ---> on MCLAG Peer

 

config switch vlan

edit 10

set igmp-snooping enable

set igmp-snooping-proxy enable

set igmp-snooping-fast-leave enable

set igmp-snooping-querier enable

 

ahamza89_0-1663514134793.png

MCLAG PEER SWITCH

 

ahamza89_1-1663514220363.png

 

Distribution Switch.

 

config switch vlan

edit 10

set igmp-snooping enable

set igmp-snooping-proxy enable

set igmp-snooping-fast-leave enable
set igmp-snooping-querier disable


end

9 REPLIES 9
Anthony_E
Community Manager
Community Manager

Hello ahamza89.

 

Thank you for using the Community Forum.

 

I have found this documentation:

https://docs.fortinet.com/document/fortiswitch/7.0.1/administration-guide/607214/igmp-snooping

 

Could you please tell me if it helped?

 

Regards,

Anthony-Fortinet Community Team.
Anthony_E
Community Manager
Community Manager

Hello ahamza89,

 

We are still looking an answer for your question.

We will come back to you ASAP.

 

Regards,

Anthony-Fortinet Community Team.
sachitdas_FTNT

Hi,

Are these standalone FSWs or managed by FGT? If managed by FGT, you need to push the config from the FGT.

 

You can check in the logs for any event due to which config is getting erased.

exec log filter view-lines 1000

exec log display

 

 

Regards,
Sachit Das
ETAC Engineer
Wifi-Switching – International Support
ahamza89

they all managed by FGT by I've configured the switch individually , configuration not pushed by FGT. 

sachitdas_FTNT

For managed FSW, please push config from fgt to fsw.

https://docs.fortinet.com/document/fortiswitch/7.2.1/fortilink-guide/173274/configuring-igmp-snoopin...

 

Regards,
Sachit Das
ETAC Engineer
Wifi-Switching – International Support
ahamza89

FGT is on 6.4.9 and all the switches on 6.4.11 .. 

sachitdas_FTNT

We can enable below options from fgt on the vlan interface.

FortiGate-300D # config system interface

FortiGate-300D (interface) # edit vlan10

FortiGate-300D (vlan10) # set switch-controller-igmp-snooping enable

FortiGate-300D (vlan10) # set switch-controller-igmp-snooping-proxy enable

FortiGate-300D (vlan10) # set switch-controller-igmp-snooping-fast-leave enable

FortiGate-300D (vlan10) # end 

Querier option is not available in FOS 6.4, its available in latest FOS Page 113: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/2ef27aa9-0778-11ed-bb32-fa163e...

We can use custom command in 6.4 and push the config to the FSW.

FortiGate-300D # config switch-controller custom-command

FortiGate-300D (custom-command) # edit igmp_querier

new entry 'igmp_querier' added

FortiGate-300D (igmp_querier) # set command "config switch vlan %0a edit 10 %0a set igmp-snooping-querier enable %0a end %0a"

FortiGate-300D (igmp_querier) # end

 

FortiGate-300D # config switch-controller managed-switch

FortiGate-300D (managed-switch) # edit <FSW serial#>

FortiGate-300D (FSW serial#) # config custom-command

FortiGate-300D (custom-command) # edit 1

new entry '1' added

FortiGate-300D (1) # set command-name igmp_querier

FortiGate-300D (1) # end

 

On FSW:-

FSW # sh full-configuration switch vlan 10

config switch vlan

    edit 10

        set description "vlan10"

        set igmp-snooping enable

        set igmp-snooping-fast-leave enable

        set igmp-snooping-querier enable

        set igmp-snooping-proxy enable

       end

Regards,
Sachit Das
ETAC Engineer
Wifi-Switching – International Support
ahamza89

Thanks Sachit, for your detail response.  

 

is there any change in configuration for MCLAG peer core switches?

 

 

ahamza89

FGT not pushing the config properly, is there anything I need to check that why isn't pushed properly.

 

fast-leave and querier addr cmd I cannot see on the switches.

Top Kudoed Authors