help - change mode from fortlink to manual mode - FG60F

papapuff · ‎10-08-2023

hello there,

need help.

we use fortigate FG60F with firmware 7.2.4

there are 2 ports as member on Fortilink.

I want to change all members on fortilink into manual mode.

am I able to do that?

I already remove 1 port via GUI, and success. but I can't remove another port as well.

current configuration:

internal2 to internal5 already to physical interface

b already to physical interface.

hardware switch, configured as detail:

a -> role configured as "WAN"

b -> role configured as "undefined"

kindly please help

thank you

dbu · ‎10-08-2023

Hi @papapuff ,

Here is how to change the port from auto-discovery, and default auto-discovery ports for each switch model:

https://docs.fortinet.com/document/fortiswitch/7.0.8/devices-managed-by-fortios/173260/configuring-f....

Regards!

Regards!
If you have found a solution, please like and accept it to make it easily accessible for others.

papapuff · ‎10-08-2023

thanks dbu

after we activate it, we found there is no member on fortilink.

I'm wonder and afraid, if use command:set internal-switch-mode interface

will all settings made for each interface will be deleted/reset? or only 2 members that still on group "hardware-switch"

dbu · ‎10-08-2023

I believe the command "set internal-switch-mode interface" , will change to interface mode and all the configuration related to this port will be lost.

To change the mode make sure that none of its interfaces are referenced in the configuraiton.

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Switch-mode-vs-interface-mode/ta-p/189832

Regards!
If you have found a solution, please like and accept it to make it easily accessible for others.

papapuff · ‎10-09-2023

hello,

noted on your comment.

then if such as above,

is there a way, I remove members from hardware switch via GUI?

because when I remove, system require at least 1 interface connected

dbu · ‎10-09-2023

Here is how i do it from CLI :

FGT (interface) # edit "fortilink"
show

FGT (fortilink) # show
config system interface
edit "fortilink"
set vdom "root"
set fortilink enable
set ip 10.255.1.1 255.255.255.0
set allowaccess ping fabric
set status down
set type aggregate
set member "port7" "port8" >>>members
set lldp-reception enable
set lldp-transmission enable
set snmp-index 14
next
end

FGT (fortilink) # unset member

FGT (fortilink) # set fortilink disable

FGT (fortilink) # show
config system interface
edit "fortilink"
set vdom "root"
set ip 10.255.1.1 255.255.255.0
set allowaccess ping fabric
set status down
set type aggregate
set lldp-reception enable
set lldp-transmission enable
set snmp-index 14
next
end

##################################

I believe you can do the same from GUI :

Regards!
If you have found a solution, please like and accept it to make it easily accessible for others.

papapuff · ‎10-09-2023

hello

thanks for sharing it.

unfortunately still I can't do the same way.

when remove members, system not allowed to save the configuration, need assign at least one member.

I try to change switch mode to interface mode, but get error. seems I need to delete all policies, not just policies related to those interfaces in members of hardware-switch

already escalate to fortinet support. perhaps there is a solution.

help - change mode from fortlink to manual mode - FG60F

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website