Yes, the VLAN configured via FGT are the same VLAN configured on the switch. Each time you create a new VLAN you don't have to manually include it on each port that have the allow all. What are your trying to achieve here?
In my knowledge every switch (different vendors) will accept and forward tagged traffic coming only from already configured VLANs and drop any tagged traffic if they don't have a VLAN configured for it.
- Emirjon If you have found a solution, please like and accept it to make it easily accessible for others.
I ran into a use case in which I need to allow all the vlan range (1-4094) not only the configured ones,
I've found a way, under 'config switch-controller global' the option 'set vlan-all-mode' defines whether to allow the whole range 'all' or only the defined ones 'defined', but this will be applied to all the trunk ports on all the managed switches, also this option would increase the data processing on the switch.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.