I am trying to find good short real scenario for switch vlan configuration, inter-vlan routing , trunking and network segmentation documents.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Created on 07-03-2022 07:12 PM
Hello @nrahman
Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.
Thanks,
Fortinet Community Team
Dear @nrahman
There are two types major of Fortiswitch deployment , one is Fortilink mode where switches will be managed by Fortigate, the other is standalone switch deployment.
Below is supported topology for fortilink deployment :
User guide :
If the deployment method is fortilink , the L3 network will be on Fortigate itself and switches gateway for each vlan will be on the FGT. So FGT can route based on the policies and routes configured.
Standalone deployment guides:
https://docs.fortinet.com/document/fortiswitch/6.4.2/administration-guide/860027/mclag
Advanced scenarios :
Hope this helps .
Regards
Vigneash
Thanks for the guides.
I have two FortiGate Unit with HA enabled and others Forti switches are all connected to each others without any redundant links. so in this case what is the best configuration guide for fortiswitch - VLAN configuration .
Dear @nrahman
It depends on how many and the model of switches .
I would recommend an "mclag-icl" setup per the topology guide(supported for 1xx series above) :
The configuration of the switches will be done directly on the Fortigate.
Vlans will be created under "Managed Fortiswitch"/ "Fortiswitch vlan"
Fortigate will be the gateway for all the vlans .
Switches will act as layer 2 in managed topologies.
Regards
Vigneash
Thank you so much for your information. I really appreciate it.
What if I have more than 2 switches , for example I have 7 switches . How can I do that ?
Dear @nrahman
Yes with switches more than two switches, we can have first two core switches directly plugged into the FSW . Configure stacking b/w them (mclag-icl) and connect end switches on the core .
Example architecture :
All these switches will act managed with FGT and configuration will be in Fortigate for all switches.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.