Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • New Features

    7.4.0
    7.6.0
    7.4.0
    7.2.0
    7.0.0
    6.4.0
    6.2.0

    Support DHCP client mode for inter-VDOM links 7.4.1

    Support DHCP client mode for inter-VDOM links 7.4.1

    Note

    This information is also available in the FortiOS 7.4 Administration Guide:

    The inter-VDOM link is capable of acquiring an IP address from the DHCP server, which allows for more seamless network integration.

    Example

    Note

    The following example is based on the configuration in FortiGate LAN extension, and assumes that the FortiGate connector, FortiGate access controller, interfaces, VDOMs, DHCP server, and firewall policies have already been configured.

    In this example, the lan-ext VDOM was created on the FortiGate connector and is a lan-extension type. This configuration allows the VDOM to function as a FortiExtender in LAN extension mode. However, this configuration results in the loss of FortiGate security features on that VDOM. For users who wish to use the FortiGate security features locally on the FortiGate connector, another VDOM (such as the root VDOM) can be used. Once the DHCP server is enabled on the FortiGate controller, an inter-VDOM link belonging to another VDOM (in this case, the root VDOM) can receive an IP address by DHCP from the FortiGate controller.

    To configure the inter-VDOM link:

    1. Add the VDOM link with an Ethernet type:

      config system vdom-link
    edit "lan_ext"
        set type ethernet
    next
end

    2. Configure the VDOM link interfaces:

      config system interface
    edit "lan_ext0"
        set vdom "lan-ext"
        set role lan
    next
    edit "lan_ext1"
        set vdom "root"
        set mode dhcp
    next
end

    3. Verify that the lan_ext1 interface obtained an IP address from FortiGate access controller:

      # diagnose ip address list | grep lan_ext1
IP=9.9.9.100->9.9.9.100/255.255.255.0 index=27 devname=lan_ext1
    Previous
    Next

    Support DHCP client mode for inter-VDOM links 7.4.1

    Support DHCP client mode for inter-VDOM links 7.4.1

    Note

    This information is also available in the FortiOS 7.4 Administration Guide:

    The inter-VDOM link is capable of acquiring an IP address from the DHCP server, which allows for more seamless network integration.

    Example

    Note

    The following example is based on the configuration in FortiGate LAN extension, and assumes that the FortiGate connector, FortiGate access controller, interfaces, VDOMs, DHCP server, and firewall policies have already been configured.

    In this example, the lan-ext VDOM was created on the FortiGate connector and is a lan-extension type. This configuration allows the VDOM to function as a FortiExtender in LAN extension mode. However, this configuration results in the loss of FortiGate security features on that VDOM. For users who wish to use the FortiGate security features locally on the FortiGate connector, another VDOM (such as the root VDOM) can be used. Once the DHCP server is enabled on the FortiGate controller, an inter-VDOM link belonging to another VDOM (in this case, the root VDOM) can receive an IP address by DHCP from the FortiGate controller.

    To configure the inter-VDOM link:

    1. Add the VDOM link with an Ethernet type:

      config system vdom-link
    edit "lan_ext"
        set type ethernet
    next
end

    2. Configure the VDOM link interfaces:

      config system interface
    edit "lan_ext0"
        set vdom "lan-ext"
        set role lan
    next
    edit "lan_ext1"
        set vdom "root"
        set mode dhcp
    next
end

    3. Verify that the lan_ext1 interface obtained an IP address from FortiGate access controller:

      # diagnose ip address list | grep lan_ext1
IP=9.9.9.100->9.9.9.100/255.255.255.0 index=27 devname=lan_ext1
    Previous
    Next