Fortinet black logo

CLI Reference

switch-controller global

Configure FortiSwitch global settings.

  config switch-controller global
      Description: Configure FortiSwitch global settings.
      set mac-aging-interval {integer}
      set allow-multiple-interfaces [enable|disable]
      set https-image-push [enable|disable]
      set vlan-all-mode [all|defined]
      set vlan-optimization [enable|disable]
      set disable-discovery <name1>, <name2>, ...
      set mac-retention-period {integer}
      set default-virtual-switch-vlan {string}
      set log-mac-limit-violations [enable|disable]
      set mac-violation-timer {integer}
      set sn-dns-resolution [enable|disable]
      set mac-event-logging [enable|disable]
      set bounce-quarantined-link [disable|enable]
      config custom-command
          Description: List of custom commands to be pushed to all FortiSwitches in the VDOM.
          edit <command-entry>
              set command-name {string}
          next
      end
  end

config switch-controller global

Parameter Name Description Type Size
mac-aging-interval Time after which an inactive MAC is aged out (10 - 1000000 sec, default = 300, 0 = disable). integer Minimum value: 10 Maximum value: 1000000
allow-multiple-interfaces Enable/disable multiple FortiLink interfaces for redundant connections between a managed FortiSwitch and FortiGate.
enable: Enable FortiLink on multiple interfaces.
disable: Disable FortiLink on multiple interfaces.
option -
https-image-push Enable/disable image push to FortiSwitch using HTTPS.
enable: Enable image push to FortiSwitch using HTTPS.
disable: Disable image push to FortiSwitch using HTTPS.
option -
vlan-all-mode VLAN configuration mode, user-defined-vlans or all-possible-vlans.
all: Include all possible VLANs (1-4093).
defined: Include user defined VLANs.
option -
vlan-optimization FortiLink VLAN optimization.
enable: Enable VLAN optimization on FortiSwitch units for auto-generated trunks.
disable: Disable VLAN optimization on FortiSwitch units for auto-generated trunks.
option -
disable-discovery <name> Prevent this FortiSwitch from discovering.
Managed device ID.
string Maximum length: 79
mac-retention-period Time in hours after which an inactive MAC is removed from client DB (0 = aged out based on mac-aging-interval). integer Minimum value: 0 Maximum value: 168
default-virtual-switch-vlan Default VLAN for ports when added to the virtual-switch. string Maximum length: 15
log-mac-limit-violations Enable/disable logs for Learning Limit Violations.
enable: Enable Learn Limit Violation.
disable: Disable Learn Limit Violation.
option -
mac-violation-timer Set timeout for Learning Limit Violations (0 = disabled). integer Minimum value: 0 Maximum value: 4294967295
sn-dns-resolution Enable/disable DNS resolution of the FortiSwitch unit's IP address by use of its serial number.
enable: Enable DNS resolution of the FortiSwitch unit's IP address by use of its serial number.
disable: Disable DNS resolution of the FortiSwitch unit's IP address by use of its serial number.
option -
mac-event-logging Enable/disable MAC address event logging.
enable: Enable MAC address event logging.
disable: Disable MAC address event logging.
option -
bounce-quarantined-link Enable/disable bouncing (administratively bring the link down, up) of a switch port where a quarantined device was seen last. Helps to re-initiate the DHCP process for a device.
disable: Disable bouncing (administratively bring the link down, up) of a switch port where a quarantined device was seen last.
enable: Enable bouncing (administratively bring the link down, up) of a switch port where a quarantined device was seen last.
option -
Parameter Name Description Type Size
command-name Name of custom command to push to all FortiSwitches in VDOM. string Maximum length: 35

Configure FortiSwitch global settings.

  config switch-controller global
      Description: Configure FortiSwitch global settings.
      set mac-aging-interval {integer}
      set allow-multiple-interfaces [enable|disable]
      set https-image-push [enable|disable]
      set vlan-all-mode [all|defined]
      set vlan-optimization [enable|disable]
      set disable-discovery <name1>, <name2>, ...
      set mac-retention-period {integer}
      set default-virtual-switch-vlan {string}
      set log-mac-limit-violations [enable|disable]
      set mac-violation-timer {integer}
      set sn-dns-resolution [enable|disable]
      set mac-event-logging [enable|disable]
      set bounce-quarantined-link [disable|enable]
      config custom-command
          Description: List of custom commands to be pushed to all FortiSwitches in the VDOM.
          edit <command-entry>
              set command-name {string}
          next
      end
  end

config switch-controller global

Parameter Name Description Type Size
mac-aging-interval Time after which an inactive MAC is aged out (10 - 1000000 sec, default = 300, 0 = disable). integer Minimum value: 10 Maximum value: 1000000
allow-multiple-interfaces Enable/disable multiple FortiLink interfaces for redundant connections between a managed FortiSwitch and FortiGate.
enable: Enable FortiLink on multiple interfaces.
disable: Disable FortiLink on multiple interfaces.
option -
https-image-push Enable/disable image push to FortiSwitch using HTTPS.
enable: Enable image push to FortiSwitch using HTTPS.
disable: Disable image push to FortiSwitch using HTTPS.
option -
vlan-all-mode VLAN configuration mode, user-defined-vlans or all-possible-vlans.
all: Include all possible VLANs (1-4093).
defined: Include user defined VLANs.
option -
vlan-optimization FortiLink VLAN optimization.
enable: Enable VLAN optimization on FortiSwitch units for auto-generated trunks.
disable: Disable VLAN optimization on FortiSwitch units for auto-generated trunks.
option -
disable-discovery <name> Prevent this FortiSwitch from discovering.
Managed device ID.
string Maximum length: 79
mac-retention-period Time in hours after which an inactive MAC is removed from client DB (0 = aged out based on mac-aging-interval). integer Minimum value: 0 Maximum value: 168
default-virtual-switch-vlan Default VLAN for ports when added to the virtual-switch. string Maximum length: 15
log-mac-limit-violations Enable/disable logs for Learning Limit Violations.
enable: Enable Learn Limit Violation.
disable: Disable Learn Limit Violation.
option -
mac-violation-timer Set timeout for Learning Limit Violations (0 = disabled). integer Minimum value: 0 Maximum value: 4294967295
sn-dns-resolution Enable/disable DNS resolution of the FortiSwitch unit's IP address by use of its serial number.
enable: Enable DNS resolution of the FortiSwitch unit's IP address by use of its serial number.
disable: Disable DNS resolution of the FortiSwitch unit's IP address by use of its serial number.
option -
mac-event-logging Enable/disable MAC address event logging.
enable: Enable MAC address event logging.
disable: Disable MAC address event logging.
option -
bounce-quarantined-link Enable/disable bouncing (administratively bring the link down, up) of a switch port where a quarantined device was seen last. Helps to re-initiate the DHCP process for a device.
disable: Disable bouncing (administratively bring the link down, up) of a switch port where a quarantined device was seen last.
enable: Enable bouncing (administratively bring the link down, up) of a switch port where a quarantined device was seen last.
option -
Parameter Name Description Type Size
command-name Name of custom command to push to all FortiSwitches in VDOM. string Maximum length: 35