Fortinet black logo

New Features

Home FortiGate / FortiOS 7.2.0 New Features

Allow a LAG on a FortiLink-enabled software switch

7.2.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.0
Copy Link
Copy Doc ID 77966226-6996-11ec-bdf2-fa163e15d75b:569222
Download PDF

Allow a LAG on a FortiLink-enabled software switch

You can now configure a link-aggregation group (LAG) as a member of a software switch that is being used for FortiLink. Previously, you could not add a LAG to a software switch that was being used for FortiLink.

Note

  • You must set fortilink-neighbor-detect to lldp.

  • Aggregate interfaces do not automatically form an inter-switch link (ISL) within a FortiGate software switch. You must create the aggregate interfaces and add them to the software switch.

  • The FortiSwitch unit will automatically form an ISL with correctly configured FortiGate aggregate interfaces.

In the following example, aggregate1 and aggregate2 are FortiGate aggregate interfaces. The third interface, switch3, is a software switch with FortiLink enabled. The three interfaces are configured, and then aggregate1 and aggregate2 are added to the software switch interface.

config system interface

edit "aggregate1"

set vdom "root"

set type aggregate

set member "port11"

set device-identification enable

set role lan

set snmp-index 25

next

edit "aggregate2"

set vdom "root"

set type aggregate

set member "port7"

set device-identification enable

set role lan

set snmp-index 34

next

edit "switch3"

set vdom "root"

set fortilink enable

set ip 10.255.1.1 255.255.255.0

set allowaccess ping fabric

set type switch

set lldp-reception enable

set lldp-transmission enable

set snmp-index 26

set fortilink-neighbor-detect lldp

set swc-first-create 64

config ipv6

set ip6-send-adv enable

set ip6-other-flag enable

end

next

end

config system switch-interface

edit "switch3"

set vdom "root"

set member "aggregate1" "aggregate2"

next

end

Previous
Next

Allow a LAG on a FortiLink-enabled software switch

You can now configure a link-aggregation group (LAG) as a member of a software switch that is being used for FortiLink. Previously, you could not add a LAG to a software switch that was being used for FortiLink.

Note

  • You must set fortilink-neighbor-detect to lldp.

  • Aggregate interfaces do not automatically form an inter-switch link (ISL) within a FortiGate software switch. You must create the aggregate interfaces and add them to the software switch.

  • The FortiSwitch unit will automatically form an ISL with correctly configured FortiGate aggregate interfaces.

In the following example, aggregate1 and aggregate2 are FortiGate aggregate interfaces. The third interface, switch3, is a software switch with FortiLink enabled. The three interfaces are configured, and then aggregate1 and aggregate2 are added to the software switch interface.

config system interface

edit "aggregate1"

set vdom "root"

set type aggregate

set member "port11"

set device-identification enable

set role lan

set snmp-index 25

next

edit "aggregate2"

set vdom "root"

set type aggregate

set member "port7"

set device-identification enable

set role lan

set snmp-index 34

next

edit "switch3"

set vdom "root"

set fortilink enable

set ip 10.255.1.1 255.255.255.0

set allowaccess ping fabric

set type switch

set lldp-reception enable

set lldp-transmission enable

set snmp-index 26

set fortilink-neighbor-detect lldp

set swc-first-create 64

config ipv6

set ip6-send-adv enable

set ip6-other-flag enable

end

next

end

config system switch-interface

edit "switch3"

set vdom "root"

set member "aggregate1" "aggregate2"

next

end

Previous
Next