Greeting , i've just deployed a new fortiswitch connected via Fortilink to the Fortigate . The Fortigate has already an Avaya switch which need to be replaced by the Fswitch , For test purpose , i gives the VLANs under Fswitch a different IPs range to avoid the duplicate ip , i've created the VLANs and assigned them to the switch ports , Results : All the Native VLANs are working and able to reach the internet , However , The allowed VLANs are not working at all .
I've reconfigured the LLDP profile and setting and assigned it to some ports , doesn't change anything , Here's some config example that i tested on some of the Fswitch ports :
config ports edit "port1" set poe-capable 1 set vlan "qtn.FortiSwitch" set allowed-vlans-all enable set untagged-vlans "vlan.Devices" "vlan.Guest" "vlan.Security" set lldp-profile "default" set export-to "root" set mac-addr ************* next edit "port2" set poe-capable 1 set vlan "vsw.FortiSwitch" set allowed-vlans-all enable set discard-mode all-tagged--Untagged -- none set lldp-profile "default" set export-to "root" set mac-addr ************** next edit "port3" set poe-capable 1 set vlan "vsw.FortiSwitch" set allowed-vlans "vlan.Servers" "vlan.VoIP" set untagged-vlans "qtn.FortiSwitch" set export-to "root" set mac-addr ****************** nextFGT 6.2.4 FSW 6.4.2 Any suggestion will be welcomed ! Regards .
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1768 | |
1116 | |
766 | |
447 | |
242 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.