Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Sailordog
New Contributor

Created on ‎07-09-2009 04:07 PM

internal-switch-mode interface

I can' t get this 60B to switch to interface mode on the internal 6 port switch. Version: Fortigate-60B v4.0.3,build0106,090616 At Factory defaults and no interfaces up. FGT60B3908634271 # conf sys global FGT60B3908634271 (global) # set internal-switch-mode interface FGT60B3908634271 (global) # end Changing switch mode will reboot the system! Do you want to continue? (y/n)y Interface internal is in use attribute set operator error, -23, discard the setting Command fail. Return code -23 Then, following Knowledge Base " Changing from switch mode to interface mode' 03-25-2009 Document ID: 13902 FGT60B3908634271 # conf sys interface FGT60B3908634271 (interface) # rename internal to internal3 name " internal3" conflicts with names used by the switch interface hardware node_check_object fail! for name internal3 value parse error before ' internal3' Command fail. Return code -552 FGT60B3908634271 (interface) #
5507
0 Kudos
5 REPLIES 5
emnoc
Esteemed Contributor III

Created on ‎07-09-2009 04:34 PM

Youhave some type of dependencies nailed to the internal interface. Check for any firewall policies or IDS senors and try again after removing these items.

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
2436
0 Kudos
lmuir
New Contributor

Created on ‎07-09-2009 10:47 PM

Yeah, I had grief changing my 60B. Make sure there' s no addresses defined on any interfaces. I suspect it will have the default IP address configured on the internal interface.
2436
0 Kudos
mhe
Contributor II

Created on ‎07-10-2009 12:22 AM

I usually download the config file, edit it with a editor (find/replace eg " internal" -> " internal1" but check each replacement!) and change the mode: set internal-switch-mode interface After restoring the config and rebooting file you' re done - you can also use this procedure if you have some existing policies etc. martin
2436
0 Kudos
harald21
Contributor

Created on ‎07-10-2009 05:59 AM

Hi, before enabeling interface-mode for the internal switch, you will have to edit some things: 1. Disable DNS-forwaring to internal interface 2. Delete the internal DHCP server 3. Delete the Firewall policy (internal: all --> wan1: all) that was created by the factory reset 4. Enable administrative acces to any other port (instead of the internal port), because after changing the switch mode the internal ports have no ip address assigned Sincerely Harald
2436
0 Kudos
Sailordog
New Contributor

Created on ‎07-10-2009 08:18 AM

Thanks, I had cleaned up everything else but I missed the dns forwarder. Works like a charm.
2436
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.