Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Cookbook

    6.2.11
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.0
    6.0.0
    5.6.0
    5.4.0

    Virtual switch support for FortiGate 300E series

    Virtual switch support for FortiGate 300E series

    On the FortiGate 300E series, switch ports can be assigned to different VLANs.

    To create a VLAN switch in the GUI:
    1. Go to Network > Interfaces and enable VLAN Switch Mode.

    2. Click Create New > Interface.
    3. Enter an interface name and configure the following:
      1. For Type, select VLAN Switch.
      2. (Optional) Enter a VLAN ID (range is 3900–3999).
      3. If applicable, select a Virtual Domain.
      4. Add the Interface Members.
      5. Configure the Address and Administrative Access settings as needed.
    4. Click OK.

      The new VLAN switch is visible in the interface table:

    To create a VLAN switch in the CLI:
    1. Enable VLAN switch mode:
      config system global
    set virtual-switch-vlan enable
end
    2. Create the VLAN switch. Optionally, you can assign an ID to the VLAN:

      The default ID is 0. You can use the default ID, or you can assign an ID to the VLAN (3900–3999).

      config system virtual-switch
    edit "VLAN switch"
        set physical-switch "sw0"
        set vlan 3900
        config port
            edit "port1"
            next
            edit "port3"
            next
        end
    next
end
    3. Configure the VLAN switch interface:
      config system interface
    edit "VLAN switch"
        set vdom "vdom1"
        set ip 6.6.6.1 255.255.255.0
        set allowaccess ping https ssh snmp http fgfm
        set type hard-switch
        set snmp-index 15
    next
end
    4. (Optional) Create a trunk interface:
      config system interface
    edit port2
        set trunk enable   
    next
end
    Previous
    Next

    Virtual switch support for FortiGate 300E series

    Virtual switch support for FortiGate 300E series

    On the FortiGate 300E series, switch ports can be assigned to different VLANs.

    To create a VLAN switch in the GUI:
    1. Go to Network > Interfaces and enable VLAN Switch Mode.

    2. Click Create New > Interface.
    3. Enter an interface name and configure the following:
      1. For Type, select VLAN Switch.
      2. (Optional) Enter a VLAN ID (range is 3900–3999).
      3. If applicable, select a Virtual Domain.
      4. Add the Interface Members.
      5. Configure the Address and Administrative Access settings as needed.
    4. Click OK.

      The new VLAN switch is visible in the interface table:

    To create a VLAN switch in the CLI:
    1. Enable VLAN switch mode:
      config system global
    set virtual-switch-vlan enable
end
    2. Create the VLAN switch. Optionally, you can assign an ID to the VLAN:

      The default ID is 0. You can use the default ID, or you can assign an ID to the VLAN (3900–3999).

      config system virtual-switch
    edit "VLAN switch"
        set physical-switch "sw0"
        set vlan 3900
        config port
            edit "port1"
            next
            edit "port3"
            next
        end
    next
end
    3. Configure the VLAN switch interface:
      config system interface
    edit "VLAN switch"
        set vdom "vdom1"
        set ip 6.6.6.1 255.255.255.0
        set allowaccess ping https ssh snmp http fgfm
        set type hard-switch
        set snmp-index 15
    next
end
    4. (Optional) Create a trunk interface:
      config system interface
    edit port2
        set trunk enable   
    next
end
    Previous
    Next