I need to perform routing on a stick with Cisco switches, so I need to
create vlans on my Fortigate interfaces.
the above link/article - but what is interesting - an IP is already
I am coming from the Cisco world, and in that world Cisco Policy Base
Routing (PBR) is processed outside of the route table, so PBR will get
processed before static routes or any route currently in the table. Is
this is the same behavior on Fortigate...
On Cisco I can set interface speed label with the 'bandwidth' command.
Does Fortigate have an equivalent to set the speed, so bandwidth usage
will be correctly assigned a percentage based on the interface
Folks,Does the Fortigate switches offer any on chassis scripting in Tcl
or Lua or in any other scripting language like Cisco and Juniper? I have
a need for changes based on Layer 1 conditions and I do not want to get
into the STP Metric weeds and Roo...
I need a small /124 network for routing topology so I can use my IPv6
assigned by my service provider. Since these are Global Unicast
addresses, I want to assign them to my servers; however, I need a
transient network that is connected to my edge rou...
lobstercreed wrote:Mismatch native VLAN alarm is just that, an alarm. It
still functions, but potentially bridges networks that are meant to be
separated if you do it wrong. Think of your ISP handoff....you use
untagged VLAN whatever, but the ISP may...
emnoc wrote:Follow the KB and address already or assigned to the
interface would untagged and follow the cisco native vlan for that port
it's connected with. So defined your trunk port and allow vlan and cfg
the vlan-id on the FGT. Ken Felix Do you k...
sw2090 wrote:basically a vlan on a fortigate is always threated as a
virtual interface. That is just bond to a physical interface.So the
physical interface stays on its own and can have its ownb ip and
policies etc. Same for the vlan interface.Also v...
lobstercreed wrote:You can absolutely use the physical interface as well
as the virtual ones. FortiGate will send/receive packets through it
untagged, so it doesn't matter what VLAN ID you configure as
native/untagged on the other side (Cisco switch)...