Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
vmiro
New Contributor

Created on ‎01-20-2021 06:02 AM

Multiple Spanning Tree support on Fortigate

Hi,

I need to connect Fortigate 100F to two L2 Cisco switches with MST.

Documentation on STP generally on Fortigate is sparse. I'm not sure is MST supported on Fortigate and how to configure it.

 

Any help would be appreciated.

 

Thanks

mIRO

4893
0 Kudos
5 REPLIES 5
emnoc
Esteemed Contributor III

Created on ‎01-20-2021 09:02 AM

I'm pretty sure MST is not supported on fortiagtes. Fortiswicth yes but the firewall not. I would inspect the datasheet 

 

https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/FortiOS.pdf

 

And then explore config sys switch-controller

 

Ken Felix

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
4094
0 Kudos
vmiro
New Contributor
In response to emnoc

Created on ‎01-20-2021 10:35 AM

Hi,

I just put my hands on the device and found a command:

"config switch-controller stp-instance"

 

then find that a MST instances are supported from 6.2 version. But, I'm afraid this is related only for switches managed by FGT...FortiSwitch.

4094
0 Kudos
vmiro
New Contributor
In response to emnoc

Created on ‎01-20-2021 10:35 AM

Hi,

I just put my hands on the device and found a command:

"config switch-controller stp-instance"

 

then find that a MST instances are supported from 6.2 version. But, I'm afraid this is related only for switches managed by FGT...FortiSwitch.

4094
0 Kudos
vmiro
New Contributor
In response to emnoc

Created on ‎01-20-2021 10:35 AM

Hi,

I just put my hands on the device and found a command:

"config switch-controller stp-instance"

 

then find that a MST instances are supported from 6.2 version. But, I'm afraid this is related only for switches managed by FGT...FortiSwitch.

4095
0 Kudos
BroadAspect
New Contributor

Created on ‎02-04-2022 08:06 AM

In our experience, we never use a FortiGate as a 'switch' for any purpose and there is a reason the switch feature doesn't exist on the larger models. We only use FortiGate's as routed interfaces for access or trunks to our customer's core aggregation switch(es).  If the customer only has Cisco, or only Meraki switches you may find some success on most days. But supporting the classic customer that has three or four switch vendors of varous ages and capabilities, some managed, some not, and a mix of 4 port switches under desks. You will want to beat your head against a wall if you try to use the FortiGate as an aggregation point. Maybe someone is more clever than us, but we find its not worth the hassle. 

Regards, Nick


User since FortiOS 3.5

Regards, Nick User since FortiOS 3.5
3633
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.