Fortinet black logo

FortiGate-6000 Release Notes

Home FortiGate-6000 6.2.3 FortiGate-6000 Release Notes
6.2.3
7.0.15
7.0.14
7.0.13
7.0.12
7.0.10
7.0.5
6.4.15
6.4.14
6.4.13
6.4.12
6.4.10
6.4.8
6.4.6
6.4.2
6.2.16
6.2.15
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.7
6.2.6
6.2.4
6.2.3
6.0.18
6.0.17
6.0.16
6.0.15
6.0.14
6.0.13
6.0.12
6.0.10
6.0.9
6.0.8
6.0.6
6.0.4
5.6.14
5.6.12
5.6.11
5.6.7
5.6.6
5.4.10
5.4.9

Enabling Split-Task VDOM mode

Enabling Split-Task VDOM mode

By default the FortiGate-6000 and 7000 operate in Multi VDOM mode. Use the following steps to convert a FortiGate-6000 or 7000 from Multi VDOM mode to Split-Task VDOM mode. Converting to Split-Task VDOM mode involves first disabling VDOMs and then enabling Split-Task VDOM mode.

The following includes CLI steps, and where possible, GUI steps. All of these steps can be completed from the CLI. Some of these steps cannot be completed from the GUI. For example, you cannot use the GUI to turn off VDOMs from Multi VDOM mode.

  1. If required, delete all VDOMs except for mgmt-vdom and root.

  2. Log into the CLI and enter the following command to turn off VDOMs:

    config global

    config system global

    set vdom-mode no-vdom

    end

    You are logged out of the CLI.

  3. Log into the GUI or CLI and switch to Split-Task VDOM mode:

    • From the CLI, enter the following command:

      config system global

      set vdom-mode split-vdom

      end

      You are logged out of the CLI.

    • From the GUI go to System > Settings > System Operation Settings, enable Virtual Domains, select Split-Task VDOM and select OK.

      You don't need to add any management interfaces to the management VDOM. The required management interfaces and HA interfaces are added to the management VDOM automatically.

      You are logged out of the GUI.

  4. Log back into the CLI or GUI.

    The FortiGate-6000 or 7000 will be operating in Split-Task VDOM mode and FortiGate Telemetry will be enabled. In Split-Task VDOM mode, the following VDOMs are available:

    VDOM

    Description

    FG-traffic

    All data traffic must use the FG-traffic VDOM. By default, all data interfaces have been added to the root VDOM and you must move them to the FG-traffic VDOM to be able to process data traffic.

    mgmt-vdom

    The management VDOM. Just as in Multi VDOM mode, mgmt-vdom contains the management and HA interfaces. You can't add or remove interfaces from the mgmt-vdom.

    root

    The root VDOM cannot be used for management or data traffic. By default, all data interfaces are in the root VDOM and you must move interfaces to the FG-traffic VDOM to be able to use them for data traffic.
Previous
Next

Enabling Split-Task VDOM mode

By default the FortiGate-6000 and 7000 operate in Multi VDOM mode. Use the following steps to convert a FortiGate-6000 or 7000 from Multi VDOM mode to Split-Task VDOM mode. Converting to Split-Task VDOM mode involves first disabling VDOMs and then enabling Split-Task VDOM mode.

The following includes CLI steps, and where possible, GUI steps. All of these steps can be completed from the CLI. Some of these steps cannot be completed from the GUI. For example, you cannot use the GUI to turn off VDOMs from Multi VDOM mode.

  1. If required, delete all VDOMs except for mgmt-vdom and root.

  2. Log into the CLI and enter the following command to turn off VDOMs:

    config global

    config system global

    set vdom-mode no-vdom

    end

    You are logged out of the CLI.

  3. Log into the GUI or CLI and switch to Split-Task VDOM mode:

    • From the CLI, enter the following command:

      config system global

      set vdom-mode split-vdom

      end

      You are logged out of the CLI.

    • From the GUI go to System > Settings > System Operation Settings, enable Virtual Domains, select Split-Task VDOM and select OK.

      You don't need to add any management interfaces to the management VDOM. The required management interfaces and HA interfaces are added to the management VDOM automatically.

      You are logged out of the GUI.

  4. Log back into the CLI or GUI.

    The FortiGate-6000 or 7000 will be operating in Split-Task VDOM mode and FortiGate Telemetry will be enabled. In Split-Task VDOM mode, the following VDOMs are available:

    VDOM

    Description

    FG-traffic

    All data traffic must use the FG-traffic VDOM. By default, all data interfaces have been added to the root VDOM and you must move them to the FG-traffic VDOM to be able to process data traffic.

    mgmt-vdom

    The management VDOM. Just as in Multi VDOM mode, mgmt-vdom contains the management and HA interfaces. You can't add or remove interfaces from the mgmt-vdom.

    root

    The root VDOM cannot be used for management or data traffic. By default, all data interfaces are in the root VDOM and you must move interfaces to the FG-traffic VDOM to be able to use them for data traffic.
Previous
Next