Hi, I would like to know if possible to monitor FortiSwitch devices using SNMP, and the best way to do it. I have found some Fortinet documentation about how to configure SNMP for managed FortiSwitch devices but I am not sure if queries should be send to FortiSwitch IP or towards the FortiGate IP. Keep in mind that I am using the default IP for FortiLink interface and it is not routed, so I cannot reach FortiSwitch devices IP from the SNMP server. Thanks in advance.
From the Fortigate you need to set all the snmp stuff in CLI in the conf switch-controller snmp... sub menus. That way all the snmp configs will be pushed to all of your Fortiswitches. You will also need to allow the SNMP traffic to reach the fortilink interface with a policy. You will have to set that policy from CLI because the fortilink interface isn't in the drop down list when creating a policy.
The Fortiswitches needs to have a routable IP address so it's reachable from your SNMP server. You will need to set a static route to reach the snmp server, allow SNMP on the internal interface of the Fortiswitch.
I'm also trying to figure this out - I managed to get all the SNMP config onto my Fortiswitch that is managed via Fortilink by my Fortigate but I can't get a layer 3 address on it to use as the source of the SNMP traffic. I might go to TAC shortly if I can't get this figured out but if you get any luck let me know.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.