This feature enables you to configure FortiExtender admin password from FortiGate. You can also configure allowaccess of the ingress interface from the FortiGate so that the FortiGate can manage the FortiExtender based on the protocol specified in allowaccess.
For FortiExtenders configured as WAN extension in FortiGate, the ingress interface is the one specified in
"config system management fortigate". In the following example, the allowaccess of the
"lan" interface will be changed as the configuration from the FortiGate. The value of "
ingress-intf" will be automatically filled by the system when the FortiExtender is managed by the FortiGate. It cannot be edited or unset.
FX201E5919000027 # config system management fortigate FX201E5919000027 (fortigate) # show config system management fortigate set ac-discovery-type broadcast set ac-ctl-port 5246 set ac-data-port 25246 set discovery-intf lan set ingress-intf lan <=== The value cannot be edited and unset end
For a FortiExtender configured as LAN extension of a FortiGate, the ingress interface is
"le-switch", whose allowaccess will be changed as the configuration from the FortiGate. In the following example, the "l
e-switch" is a predefined switch interface which will be automatically generated by the system when the FortiExtender is managed by the FortiGate. The entry
"config system switch-interface" is read-only and cannot be edited or deleted.
config system switch-interface
edit le-switch <=== The entry cannot be edited or deleted
set members le-agg-link lan
set stp disable